@certd/plugin-cert 1.24.4 → 1.25.2

package/dist/d/access/eab-access.d.ts

@@ -1,4 +0,0 @@
-export declare class EabAccess {
-    kid: string;
-    hmacKey: string;
-}

package/dist/d/access/index.d.ts

@@ -1 +0,0 @@
-export * from "./eab-access";

package/dist/d/dns-provider/api.d.ts

@@ -1,27 +0,0 @@
-import { HttpClient, IAccess, ILogger, Registrable } from "@certd/pipeline";
-export type DnsProviderDefine = Registrable & {
-    accessType: string;
-    autowire?: {
-        [key: string]: any;
-    };
-};
-export type CreateRecordOptions = {
-    fullRecord: string;
-    type: string;
-    value: any;
-    domain: string;
-};
-export type RemoveRecordOptions<T> = CreateRecordOptions & {
-    record: T;
-};
-export type DnsProviderContext = {
-    access: IAccess;
-    logger: ILogger;
-    http: HttpClient;
-};
-export interface IDnsProvider<T = any> {
-    onInstance(): Promise<void>;
-    createRecord(options: CreateRecordOptions): Promise<T>;
-    removeRecord(options: RemoveRecordOptions<T>): Promise<void>;
-    setCtx(ctx: DnsProviderContext): void;
-}

package/dist/d/dns-provider/base.d.ts

@@ -1,8 +0,0 @@
-import { CreateRecordOptions, DnsProviderContext, IDnsProvider, RemoveRecordOptions } from "./api";
-export declare abstract class AbstractDnsProvider<T = any> implements IDnsProvider<T> {
-    ctx: DnsProviderContext;
-    setCtx(ctx: DnsProviderContext): void;
-    abstract createRecord(options: CreateRecordOptions): Promise<T>;
-    abstract onInstance(): Promise<void>;
-    abstract removeRecord(options: RemoveRecordOptions<T>): Promise<void>;
-}

package/dist/d/dns-provider/decorator.d.ts

@@ -1,3 +0,0 @@
-import { DnsProviderDefine } from "./api";
-export declare const DNS_PROVIDER_CLASS_KEY = "pipeline:dns-provider";
-export declare function IsDnsProvider(define: DnsProviderDefine): ClassDecorator;

package/dist/d/dns-provider/index.d.ts

@@ -1,4 +0,0 @@
-export * from "./api";
-export * from "./registry";
-export * from "./decorator";
-export * from "./base";

package/dist/d/dns-provider/registry.d.ts

@@ -1,2 +0,0 @@
-import { Registry } from "@certd/pipeline";
-export declare const dnsProviderRegistry: Registry<unknown>;

package/dist/d/index.d.ts

@@ -1,3 +0,0 @@
-export * from "./plugin";
-export * from "./dns-provider";
-export * from "./access";

package/dist/d/plugin/cert-plugin/acme.d.ts

@@ -1,54 +0,0 @@
-import * as acme from "@certd/acme-client";
-import { Logger } from "log4js";
-import { IContext } from "@certd/pipeline";
-import { IDnsProvider } from "../../dns-provider";
-import { ClientExternalAccountBindingOptions } from "@certd/acme-client";
-export type CertInfo = {
-    crt: string;
-    key: string;
-    csr: string;
-};
-export type SSLProvider = "letsencrypt" | "buypass" | "zerossl";
-export declare class AcmeService {
-    userContext: IContext;
-    logger: Logger;
-    sslProvider: SSLProvider;
-    skipLocalVerify: boolean;
-    eab?: ClientExternalAccountBindingOptions;
-    constructor(options: {
-        userContext: IContext;
-        logger: Logger;
-        sslProvider: SSLProvider;
-        eab?: ClientExternalAccountBindingOptions;
-        skipLocalVerify?: boolean;
-    });
-    getAccountConfig(email: string): Promise<any>;
-    buildAccountKey(email: string): string;
-    saveAccountConfig(email: string, conf: any): Promise<void>;
-    getAcmeClient(email: string, isTest?: boolean): Promise<acme.Client>;
-    createNewKey(): Promise<string>;
-    parseDomain(fullDomain: string): string;
-    challengeCreateFn(authz: any, challenge: any, keyAuthorization: string, dnsProvider: IDnsProvider): Promise<any>;
-    /**
-     * Function used to remove an ACME challenge response
-     *
-     * @param {object} authz Authorization object
-     * @param {object} challenge Selected challenge
-     * @param {string} keyAuthorization Authorization key
-     * @param recordItem  challengeCreateFn create record item
-     * @param dnsProvider dnsProvider
-     * @returns {Promise}
-     */
-    challengeRemoveFn(authz: any, challenge: any, keyAuthorization: string, recordItem: any, dnsProvider: IDnsProvider): Promise<void>;
-    order(options: {
-        email: string;
-        domains: string | string[];
-        dnsProvider: any;
-        csrInfo: any;
-        isTest?: boolean;
-    }): Promise<CertInfo>;
-    buildCommonNameByDomains(domains: string | string[]): {
-        commonName: string;
-        altNames: string[] | undefined;
-    };
-}

package/dist/d/plugin/cert-plugin/cert-reader.d.ts

@@ -1,16 +0,0 @@
-import { CertInfo } from "./acme";
-import forge from "node-forge";
-export declare class CertReader implements CertInfo {
-    crt: string;
-    key: string;
-    csr: string;
-    detail: any;
-    expires: number;
-    constructor(certInfo: CertInfo);
-    toCertInfo(): CertInfo;
-    getCrtDetail(crt: string): {
-        detail: forge.pki.Certificate;
-        expires: Date;
-    };
-    saveToFile(type: "crt" | "key", filepath?: string): string;
-}

package/dist/d/plugin/cert-plugin/index.d.ts

@@ -1,52 +0,0 @@
-import { AbstractTaskPlugin, HttpClient, IAccessService, IContext, Step } from "@certd/pipeline";
-import { AcmeService, CertInfo, SSLProvider } from "./acme";
-import { Logger } from "log4js";
-import { CertReader } from "./cert-reader";
-export { CertReader };
-export type { CertInfo };
-export declare class CertApplyPlugin extends AbstractTaskPlugin {
-    domains: string;
-    email: string;
-    sslProvider: SSLProvider;
-    eabAccessId: number;
-    dnsProviderType: string;
-    dnsProviderAccess: string;
-    skipLocalVerify: boolean;
-    renewDays: number;
-    forceUpdate: string;
-    csrInfo: string;
-    intro: string;
-    acme: AcmeService;
-    logger: Logger;
-    userContext: IContext;
-    accessService: IAccessService;
-    http: HttpClient;
-    lastStatus: Step;
-    cert?: CertInfo;
-    onInstance(): Promise<void>;
-    execute(): Promise<void>;
-    output(certReader: CertReader): Promise<void>;
-    zipCert(cert: CertInfo, applyTime: string): Promise<void>;
-    /**
-     * 是否更新证书
-     */
-    condition(): Promise<CertReader | null>;
-    doCertApply(): Promise<CertReader>;
-    formatCert(pem: string): string;
-    formatCerts(cert: {
-        crt: string;
-        key: string;
-        csr: string;
-    }): CertInfo;
-    readLastCert(): Promise<CertReader | undefined>;
-    /**
-     * 检查是否过期，默认提前20天
-     * @param expires
-     * @param maxDays
-     * @returns {boolean}
-     */
-    isWillExpire(expires: number, maxDays?: number): {
-        isWillExpire: boolean;
-        leftDays: number;
-    };
-}

package/dist/d/plugin/index.d.ts

@@ -1 +0,0 @@
-export * from "./cert-plugin";

package/dist/plugin/cert-plugin/lego.d.ts

@@ -1,16 +0,0 @@
-import type { CertInfo } from "./acme.js";
-import { CertReader } from "./cert-reader.js";
-import { CertApplyBasePlugin } from "./base.js";
-import { EabAccess } from "../../access";
-export { CertReader };
-export type { CertInfo };
-export declare class CertApplyLegoPlugin extends CertApplyBasePlugin {
-    dnsType: string;
-    environment: string;
-    eabAccessId: number;
-    customArgs: string;
-    eab?: EabAccess;
-    onInstance(): Promise<void>;
-    onInit(): Promise<void>;
-    doCertApply(): Promise<CertReader>;
-}

package/dist/plugin/cert-plugin/lego.js

@@ -1,145 +0,0 @@
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var __metadata = (this && this.__metadata) || function (k, v) {
-    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
-};
-import { IsTaskPlugin, RunStrategy, sp, TaskInput } from "@certd/pipeline";
-import { CertReader } from "./cert-reader.js";
-import { CertApplyBasePlugin } from "./base.js";
-import fs from "fs";
-import path from "path";
-export { CertReader };
-let CertApplyLegoPlugin = class CertApplyLegoPlugin extends CertApplyBasePlugin {
-    dnsType;
-    environment;
-    eabAccessId;
-    customArgs = "";
-    eab;
-    async onInstance() {
-        this.accessService = this.ctx.accessService;
-        this.logger = this.ctx.logger;
-        this.userContext = this.ctx.userContext;
-        this.http = this.ctx.http;
-        this.lastStatus = this.ctx.lastStatus;
-        if (this.eabAccessId) {
-            this.eab = await this.ctx.accessService.getById(this.eabAccessId);
-        }
-    }
-    async onInit() { }
-    async doCertApply() {
-        const env = {};
-        const env_lines = this.environment.split("\n");
-        for (const line of env_lines) {
-            const [key, value] = line.trim().split("=");
-            env[key] = value.trim();
-        }
-        let domainArgs = "";
-        for (const domain of this.domains) {
-            domainArgs += ` -d "${domain}"`;
-        }
-        this.logger.info(`环境变量:${JSON.stringify(env)}`);
-        let eabArgs = "";
-        if (this.eab) {
-            eabArgs = ` --eab "${this.eab.kid}" --kid "${this.eab.kid}" --hmac "${this.eab.hmacKey}"`;
-        }
-        const keyType = "-k rsa2048";
-        const saveDir = `./data/.lego/pipeline_${this.pipeline.id}/`;
-        const savePathArgs = `--path "${saveDir}"`;
-        const os_type = process.platform === "win32" ? "windows" : "linux";
-        const legoPath = path.resolve("./tools", os_type, "lego");
-        const cmds = [
-            `${legoPath} -a --email "${this.email}" --dns ${this.dnsType} ${keyType} ${domainArgs} ${eabArgs} ${savePathArgs}  ${this.customArgs || ""} run`,
-        ];
-        await sp.spawn({
-            cmd: cmds,
-            logger: this.logger,
-            env,
-        });
-        //读取证书文件
-        // example.com.crt
-        // example.com.issuer.crt
-        // example.com.json
-        // example.com.key
-        let domain1 = this.domains[0];
-        domain1 = domain1.replaceAll("*", "_");
-        const crtPath = path.resolve(saveDir, "certificates", `${domain1}.crt`);
-        if (fs.existsSync(crtPath) === false) {
-            throw new Error(`证书文件不存在,证书申请失败:${crtPath}`);
-        }
-        const crt = fs.readFileSync(crtPath, "utf8");
-        const keyPath = path.resolve(saveDir, "certificates", `${domain1}.key`);
-        const key = fs.readFileSync(keyPath, "utf8");
-        const csr = "";
-        const cert = { crt, key, csr };
-        const certInfo = this.formatCerts(cert);
-        return new CertReader(certInfo);
-    }
-};
-__decorate([
-    TaskInput({
-        title: "DNS类型",
-        component: {
-            name: "a-input",
-            vModel: "value",
-        },
-        required: true,
-    }),
-    __metadata("design:type", String)
-], CertApplyLegoPlugin.prototype, "dnsType", void 0);
-__decorate([
-    TaskInput({
-        title: "环境变量",
-        component: {
-            name: "a-textarea",
-            vModel: "value",
-            rows: 6,
-        },
-        required: true,
-        helper: "一行一条，例如 appKeyId=xxxxx",
-    }),
-    __metadata("design:type", String)
-], CertApplyLegoPlugin.prototype, "environment", void 0);
-__decorate([
-    TaskInput({
-        title: "EAB授权",
-        component: {
-            name: "pi-access-selector",
-            type: "eab",
-        },
-        helper: "如果需要提供EAB授权",
-    }),
-    __metadata("design:type", Number)
-], CertApplyLegoPlugin.prototype, "eabAccessId", void 0);
-__decorate([
-    TaskInput({
-        title: "自定义LEGO参数",
-        component: {
-            name: "a-input",
-            vModel: "value",
-        },
-    }),
-    __metadata("design:type", Object)
-], CertApplyLegoPlugin.prototype, "customArgs", void 0);
-CertApplyLegoPlugin = __decorate([
-    IsTaskPlugin({
-        name: "CertApplyLego",
-        title: "证书申请（Lego）",
-        desc: "支持海量DNS解析提供商，推荐使用",
-        default: {
-            input: {
-                renewDays: 20,
-                forceUpdate: false,
-            },
-            strategy: {
-                runStrategy: RunStrategy.AlwaysRun,
-            },
-        },
-    })
-], CertApplyLegoPlugin);
-export { CertApplyLegoPlugin };
-new CertApplyLegoPlugin();
-//# sourceMappingURL=data:application/json;base64,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