@certd/plugin-plus 1.34.1 → 1.34.3

package/export-plugin-yaml.js

@@ -0,0 +1,99 @@
+// 扫描目录，列出文件，然后加载为模块
+
+import path, { join } from "path";
+import fs from "fs";
+import { pathToFileURL } from "node:url";
+import * as yaml from "js-yaml";
+import { AbstractTaskPlugin, BaseAccess, BaseNotification } from "@certd/pipeline";
+
+function scanDir(dir) {
+  const files = fs.readdirSync(dir);
+  const result = [];
+  // 扫描目录及子目录
+  for (const file of files) {
+    const filePath = join(dir, file);
+    const stat = fs.statSync(filePath);
+    if (stat.isDirectory()) {
+      result.push(...scanDir(filePath));
+    } else {
+      if (!file.endsWith(".js")) {
+        continue;
+      }
+      result.push(filePath);
+    }
+  }
+  return result;
+}
+
+export default async function loadModules(dir) {
+  const files = scanDir(dir);
+  const modules = {};
+  for (const file of files) {
+    if (file === "dist/index.js" || file === "dist\\index.js") {
+      continue;
+    }
+    try {
+      // 转换为 file:// URL（Windows 必需）
+      const moduleUrl = pathToFileURL(file).href;
+      const module = await import(moduleUrl);
+
+      // 如果模块有默认导出，优先使用
+      modules[file] = module.default || module;
+    } catch (err) {
+      console.error(`加载模块 ${file} 失败:`, err);
+    }
+  }
+  return modules;
+}
+
+function isPrototypeOf(value, cls) {
+  return cls.prototype.isPrototypeOf(value.prototype);
+}
+async function genMetadata() {
+  const modules = await loadModules("./dist");
+
+  fs.rmSync("./metadata", { recursive: true });
+  fs.mkdirSync("./metadata", { recursive: true });
+  for (const key in modules) {
+    console.log(key);
+    const module = modules[key];
+    const entry = Object.entries(module);
+    for (const [name, value] of entry) {
+      //如果有define属性
+      if (value.define) {
+        //那么就是插件
+        let location = key.substring(4);
+        location = location.substring(0, location.length - 3);
+        location = location.replaceAll("\\", "/");
+        location += ".js";
+        location = `../..${location}`; // 从modules/plugin/plugin-service 加载 ../../plugins目录下的文件
+
+        const pluginDefine = {
+          ...value.define,
+        };
+        pluginDefine.type = "builtIn";
+        if (pluginDefine.accessType) {
+          pluginDefine.pluginType = "dnsProvider";
+        } else if (isPrototypeOf(value, AbstractTaskPlugin)) {
+          pluginDefine.pluginType = "deploy";
+        } else if (isPrototypeOf(value, BaseNotification)) {
+          pluginDefine.pluginType = "notification";
+        } else if (isPrototypeOf(value, BaseAccess)) {
+          pluginDefine.pluginType = "access";
+        } else {
+          console.log(`[warning] 未知的插件类型：${pluginDefine.name}`);
+        }
+
+        const filePath = path.join(`./metadata/${pluginDefine.pluginType}_${pluginDefine.name}.yaml`);
+
+        pluginDefine.scriptFilePath = location;
+        const data = yaml.dump(pluginDefine);
+        fs.writeFileSync(filePath, data, "utf8");
+      }
+    }
+  }
+  process.exit();
+}
+// import why from 'why-is-node-running'
+// setTimeout(() => why(), 100); // 延迟打印原因
+genMetadata();

package/metadata/access_1panel.yaml

@@ -0,0 +1,81 @@
+name: 1panel
+title: 1panel授权
+desc: 账号和密码
+icon: svg:icon-onepanel
+input:
+  baseUrl:
+    title: 1Panel面板的url
+    component:
+      placeholder: http://xxxx.com:1231
+    helper: 不要带安全入口
+    required: true
+  safeEnter:
+    title: 安全入口
+    component:
+      placeholder: 登录的安全入口
+    encrypt: true
+    required: false
+  type:
+    title: 授权方式
+    component:
+      name: a-select
+      vModel: value
+      options:
+        - label: 模拟登录【不推荐】
+          value: password
+        - label: 接口密钥【推荐】
+          value: apikey
+    required: true
+  username:
+    title: 用户名
+    component:
+      placeholder: username
+    mergeScript: |2-
+
+            return {
+              show: ctx.compute(({form})=>{
+                return form.access.type === 'password';
+              })
+            }
+          
+    required: true
+  password:
+    title: 密码
+    component:
+      placeholder: password
+    helper: ''
+    mergeScript: |2-
+
+            return {
+              show: ctx.compute(({form})=>{
+                return form.access.type === 'password';
+              })
+            }
+          
+    required: true
+    encrypt: true
+  apiKey:
+    title: 接口密钥
+    component:
+      placeholder: 接口密钥
+    mergeScript: |2-
+
+            return {
+              show: ctx.compute(({form})=>{
+                return form.access.type === 'apikey';
+              })
+            }
+          
+    helper: 面板设置->API接口中获取
+    required: true
+    encrypt: true
+  skipSslVerify:
+    title: 忽略证书校验
+    value: true
+    component:
+      name: a-switch
+      vModel: checked
+    helper: 如果面板的url是https，且使用的是自签名证书，则需要开启此选项，其他情况可以关闭
+type: builtIn
+pluginType: access
+scriptFilePath: ../../1panel/index.js

package/metadata/access_alipay.yaml

@@ -0,0 +1,29 @@
+name: alipay
+title: 支付宝
+icon: ion:logo-alipay
+input:
+  appId:
+    title: AppId
+    component:
+      placeholder: 201909176714xxxx
+    required: true
+    encrypt: false
+  privateKey:
+    title: 应用私钥
+    component:
+      placeholder: MIIEvQIBADANB...
+      name: a-textarea
+      rows: 3
+    required: true
+    encrypt: true
+  alipayPublicKey:
+    title: 支付宝公钥
+    component:
+      name: a-textarea
+      rows: 3
+      placeholder: MIIBIjANBg...
+    required: true
+    encrypt: true
+type: builtIn
+pluginType: access
+scriptFilePath: ../../alipay/index.js

package/metadata/access_baidu.yaml

@@ -0,0 +1,22 @@
+name: baidu
+title: 百度云授权
+desc: ''
+icon: ant-design:baidu-outlined
+input:
+  accessKey:
+    title: AccessKey
+    component:
+      placeholder: AccessKey
+    helper: '[百度智能云->安全认证获取](https://console.bce.baidu.com/iam/#/iam/accesslist)'
+    required: true
+    encrypt: false
+  secretKey:
+    title: SecretKey
+    component:
+      placeholder: SecretKey
+    helper: ''
+    required: true
+    encrypt: true
+type: builtIn
+pluginType: access
+scriptFilePath: ../../baidu/index.js

package/metadata/access_baishan.yaml

@@ -0,0 +1,15 @@
+name: baishan
+title: 白山云授权
+desc: ''
+icon: material-symbols:shield-outline
+input:
+  token:
+    title: token
+    component:
+      placeholder: token
+    helper: 自行联系提供商申请
+    required: true
+    encrypt: true
+type: builtIn
+pluginType: access
+scriptFilePath: ../../baishan/index.js

package/metadata/access_baota-waf.yaml

@@ -0,0 +1,36 @@
+name: baota-waf
+title: 宝塔云WAF授权
+desc: 用于连接和管理宝塔云WAF服务的授权配置
+icon: svg:icon-bt
+input:
+  panelUrl:
+    title: 在宝塔WAF URL
+    component:
+      placeholder: http://192.168.42.237:41896
+    helper: 在宝塔WAF的URL地址，不要带安全入口，例如：http://192.168.42.237:41896
+    required: true
+  apiSecret:
+    title: WAF API 密钥
+    component:
+      placeholder: 请输入WAF API接口密钥
+    helper: |-
+      在宝塔WAF设置页面 - API接口中获取的API密钥。
+      必须添加IP白名单，请确保已将CertD服务器IP加入白名单
+    required: true
+    encrypt: true
+  skipSslVerify:
+    title: 忽略SSL证书校验
+    value: false
+    component:
+      name: a-switch
+      vModel: checked
+    helper: 如果面板使用的是自签名SSL证书，则需要开启此选项
+  testRequest:
+    title: 测试
+    component:
+      name: api-test
+      action: onTestRequest
+    helper: 点击测试WAF请求
+type: builtIn
+pluginType: access
+scriptFilePath: ../../baota/waf-access.js

package/metadata/access_baota.yaml

@@ -0,0 +1,50 @@
+name: baota
+title: baota授权
+desc: ''
+icon: svg:icon-bt
+input:
+  panelUrl:
+    title: 宝塔URL地址
+    component:
+      placeholder: http://192.168.42.237:41896
+    helper: 宝塔面板的url地址，不要带安全入口，例如：http://192.168.42.237:41896
+    required: true
+  apiSecret:
+    title: 接口密钥
+    component:
+      placeholder: 接口密钥
+    helper: |-
+      宝塔面板设置->面板设置->API接口->接口配置->接口密钥。
+      必须要加IP白名单，您可以点击下方测试按钮，报错之后会打印IP，将IP加入白名单之后再次测试即可
+    required: true
+    encrypt: true
+  skipSslVerify:
+    title: 忽略证书校验
+    value: true
+    component:
+      name: a-switch
+      vModel: checked
+    helper: 如果面板的url是https，且使用的是自签名证书，则需要开启此选项，其他情况可以关闭
+  testRequest:
+    title: 测试
+    component:
+      name: api-test
+      type: access
+      typeName: baota
+      action: TestRequest
+    mergeScript: |2-
+
+               return {
+                  component:{
+                    form: ctx.compute(({form})=>{
+                      return form
+                    })
+                  },
+               }
+              
+    helper: |-
+      点击测试接口看是否正常
+      如果宝塔版本低于9.0.0，此处会测试失败，可以忽略它
+type: builtIn
+pluginType: access
+scriptFilePath: ../../baota/index.js

package/metadata/access_cdnfly.yaml

@@ -0,0 +1,29 @@
+name: cdnfly
+title: cdnfly授权
+desc: ''
+icon: majesticons:cloud-line
+input:
+  url:
+    title: cdnfly系统网址
+    component:
+      name: a-input
+      vModel: value
+    required: true
+    helper: 例如：http://demo.cdnfly.cn
+  apiKey:
+    title: api_key
+    component:
+      placeholder: api_key
+    helper: 登录cdnfly控制台->账户中心->Api密钥,点击开启后获取
+    required: true
+    encrypt: true
+  apiSecret:
+    title: api_secret
+    component:
+      placeholder: api_secret
+    helper: 登录cdnfly控制台->账户中心->Api密钥,点击开启后获取
+    required: true
+    encrypt: true
+type: builtIn
+pluginType: access
+scriptFilePath: ../../cdnfly/index.js

package/metadata/access_k8s.yaml

@@ -0,0 +1,16 @@
+name: k8s
+title: k8s授权
+desc: ''
+icon: mdi:kubernetes
+input:
+  kubeconfig:
+    title: kubeconfig
+    component:
+      name: a-textarea
+      vModel: value
+      placeholder: kubeconfig
+    required: true
+    encrypt: true
+type: builtIn
+pluginType: access
+scriptFilePath: ../../k8s/index.js

package/metadata/access_kuocaicdn.yaml

@@ -0,0 +1,20 @@
+name: kuocaicdn
+title: 括彩云cdn授权
+icon: material-symbols:shield-outline
+desc: 括彩云CDN，每月免费30G，[注册即领](https://kuocaicdn.com/register?code=8mn536rrzfbf8)
+input:
+  username:
+    title: 账户
+    component:
+      placeholder: 手机号
+    required: true
+    encrypt: true
+  password:
+    title: 密码
+    component:
+      placeholder: password
+    required: true
+    encrypt: true
+type: builtIn
+pluginType: access
+scriptFilePath: ../../kuocai/index.js

package/metadata/access_lecdn.yaml

@@ -0,0 +1,27 @@
+name: lecdn
+title: LeCDN授权
+desc: ''
+icon: material-symbols:shield-outline
+input:
+  url:
+    title: LeCDN系统网址
+    component:
+      name: a-input
+      vModel: value
+    required: true
+    helper: 例如：http://demo.xxxx.cn
+  username:
+    title: 用户名
+    component:
+      placeholder: username
+    required: true
+    encrypt: false
+  password:
+    title: 登录密码
+    component:
+      placeholder: password
+    required: true
+    encrypt: true
+type: builtIn
+pluginType: access
+scriptFilePath: ../../lecdn/index.js

package/metadata/access_lucky.yaml

@@ -0,0 +1,29 @@
+name: lucky
+title: lucky
+desc: ''
+icon: svg:icon-lucky
+input:
+  url:
+    title: 访问url
+    component:
+      placeholder: http://xxx.xx.xx:16301
+    helper: 不要带安全入口
+    required: true
+    encrypt: false
+  safePath:
+    title: 安全入口
+    component:
+      placeholder: /your_safe_path
+    helper: 请参考lucky设置中关于安全入口的配置，
+    required: false
+    encrypt: true
+  openToken:
+    title: OpenToken
+    component:
+      placeholder: OpenToken
+    helper: 设置->最下面开发者设置->启用OpenToken
+    required: true
+    encrypt: true
+type: builtIn
+pluginType: access
+scriptFilePath: ../../lucky/index.js

package/metadata/access_maoyun.yaml

@@ -0,0 +1,26 @@
+name: maoyun
+title: 猫云授权
+desc: ''
+icon: svg:icon-lucky
+input:
+  username:
+    title: 用户名
+    component:
+      placeholder: username/手机号/email
+      name: a-input
+      vModel: value
+    helper: 用户名
+    required: true
+  password:
+    title: password
+    component:
+      placeholder: 密码
+      component:
+        name: a-input-password
+        vModel: value
+    encrypt: true
+    helper: 密码
+    required: true
+type: builtIn
+pluginType: access
+scriptFilePath: ../../maoyun/index.js

package/metadata/access_plesk.yaml

@@ -0,0 +1,27 @@
+name: plesk
+title: plesk授权
+desc: ''
+icon: svg:icon-plesk
+input:
+  url:
+    title: Plesk网址
+    component:
+      name: a-input
+      vModel: value
+    required: true
+    helper: 例如：https://xxxx.xxxxx:8443/
+  username:
+    title: 用户名
+    component:
+      placeholder: username
+    required: true
+    encrypt: false
+  password:
+    title: 登录密码
+    component:
+      placeholder: password
+    required: true
+    encrypt: true
+type: builtIn
+pluginType: access
+scriptFilePath: ../../plesk/index.js

package/metadata/access_safeline.yaml

@@ -0,0 +1,26 @@
+name: safeline
+title: 长亭雷池授权
+icon: svg:icon-safeline
+input:
+  baseUrl:
+    title: 雷池的访问url
+    component:
+      placeholder: https://xxxx.com:9443
+    required: true
+  apiToken:
+    title: ApiToken
+    component:
+      placeholder: apiToken
+    helper: ''
+    required: true
+    encrypt: true
+  skipSslVerify:
+    title: 忽略证书校验
+    value: true
+    component:
+      name: a-switch
+      vModel: checked
+    helper: 如果面板的url是https，且使用的是自签名证书，则需要开启此选项，其他情况可以关闭
+type: builtIn
+pluginType: access
+scriptFilePath: ../../safeline/index.js

package/metadata/access_synology.yaml

@@ -0,0 +1,80 @@
+name: synology
+title: 群晖登录授权
+desc: ''
+icon: simple-icons:synology
+input:
+  version:
+    title: 群晖版本
+    component:
+      name: a-select
+      vModel: value
+      options:
+        - label: 7.x
+          value: '7'
+        - label: 6.x
+          value: '6'
+    required: true
+  baseUrl:
+    title: 群晖面板的url
+    component:
+      placeholder: https://yourdomain:5006
+    helper: 群晖面板的访问地址,例如：https://yourdomain:5006
+    required: true
+  username:
+    title: 账号
+    component:
+      placeholder: 账号
+    helper: 群晖面板登录账号，必须是处于管理员用户组
+    required: true
+  password:
+    title: 密码
+    component:
+      placeholder: 密码
+    helper: 群晖面板登录密码
+    required: true
+    encrypt: true
+  otp:
+    title: 双重认证
+    value: false
+    component:
+      name: a-switch
+      vModel: checked
+    helper: 是否启用了双重认证
+    required: true
+  deviceId:
+    title: 设备ID
+    component:
+      placeholder: 设备ID
+      name: synology-device-id-getter
+      type: access
+      typeName: synology
+    mergeScript: |2-
+
+           return {
+              component:{
+                form: ctx.compute(({form})=>{
+                  return form
+                })
+              },
+              show: ctx.compute(({form})=>{
+                 return form.access.otp
+              })
+           }
+          
+    helper: |-
+      1.如果开启了双重认证，需要获取设备ID
+      2.填好上面的必填项，然后点击获取设备ID，输入双重认证APP上的码，确认即可获得设备ID，此操作只需要做一次
+      3.注意：必须勾选‘安全性->允许网页浏览器的用户通过信任设备来跳过双重验证
+      4.注意：在群晖信任设备页面里面会生成一条记录，不要删除
+    required: false
+    encrypt: true
+  skipSslVerify:
+    title: 忽略证书校验
+    value: true
+    component:
+      name: a-switch
+      vModel: checked
+    helper: 如果面板的url是https，且使用的是自签名证书，则需要开启此选项，其他情况可以关闭
+type: builtIn
+pluginType: access
+scriptFilePath: ../../synology/index.js

package/metadata/access_unicloud.yaml

@@ -0,0 +1,21 @@
+name: unicloud
+title: uniCloud
+icon: material-symbols:shield-outline
+desc: unicloud授权
+input:
+  email:
+    title: 账号
+    component:
+      placeholder: email
+    helper: 登录邮箱
+    required: true
+    encrypt: false
+  password:
+    title: 密码
+    component:
+      placeholder: 密码
+    required: true
+    encrypt: true
+type: builtIn
+pluginType: access
+scriptFilePath: ../../unicloud/index.js

package/metadata/access_wxpay.yaml

@@ -0,0 +1,40 @@
+name: wxpay
+title: 微信支付
+icon: tdesign:logo-wechatpay-filled
+input:
+  appId:
+    title: AppId
+    component:
+      placeholder: 201909176714xxxx
+    required: true
+    encrypt: false
+  mchid:
+    title: 商户ID
+    component:
+      placeholder: 201909176714xxxx
+    required: true
+    encrypt: false
+  publicKey:
+    title: 公钥
+    component:
+      name: a-textarea
+      rows: 3
+      placeholder: MIIBIjANBg...
+    required: true
+    encrypt: true
+  privateKey:
+    title: 私钥
+    component:
+      placeholder: MIIEvQIBADANB...
+      name: a-textarea
+      rows: 3
+    required: true
+    encrypt: true
+  key:
+    title: APIv3密钥
+    helper: 微信商户平台—>账户设置—>API安全—>设置APIv3密钥
+    required: true
+    encrypt: true
+type: builtIn
+pluginType: access
+scriptFilePath: ../../wxpay/index.js