certops 1.0.9 → 1.0.11

package/README.md

@@ -1,6 +1,6 @@
 # certops
 
-CLI for managing and auto-renewing SSL certificates from the [SSL Pilot](https://ssl-manager.dcom.at) platform.
+CLI for managing and auto-renewing SSL certificates from the [CertOps](https://ssl-manager.dcom.at) platform.
 
 ## Install
 
@@ -11,7 +11,7 @@ npm install -g certops
 ## Requirements
 
 - Node.js 18+
-- An SSL Pilot API key (`sslpilot_...`) from your dashboard
+- An CertOps API key (`sslpilot_...`) from your dashboard
 
 ## Quick start
 
@@ -78,18 +78,18 @@ journalctl -u certops -f          # follow logs
 
 ## Auto-renewal service
 
-The service polls your SSL Pilot account, checks local expiry state, and re-downloads certificates approaching expiry. Hook scripts in `/etc/certops/hooks/` run after each download.
+The service polls your CertOps account, checks local expiry state, and re-downloads certificates approaching expiry. Hook scripts in `/etc/certops/hooks/` run after each download.
 
 **Hook environment variables:**
 
 | Variable | Value |
 |----------|-------|
-| `SSL_PILOT_CERT_NAME` | Certificate name |
-| `SSL_PILOT_DOMAIN` | Domain (certName from API) |
-| `SSL_PILOT_FULLCHAIN_PATH` | Path to `fullchain.pem` |
-| `SSL_PILOT_CERT_PATH` | Path to `cert.pem` |
-| `SSL_PILOT_CHAIN_PATH` | Path to `chain.pem` |
-| `SSL_PILOT_KEY_PATH` | Path to `privkey.pem` |
+| `CERTOPS_CERT_NAME` | Certificate name |
+| `CERTOPS_DOMAIN` | Domain (certName from API) |
+| `CERTOPS_FULLCHAIN_PATH` | Path to `fullchain.pem` |
+| `CERTOPS_CERT_PATH` | Path to `cert.pem` |
+| `CERTOPS_CHAIN_PATH` | Path to `chain.pem` |
+| `CERTOPS_KEY_PATH` | Path to `privkey.pem` |
 
 **Example hook** (`/etc/certops/hooks/example.com.sh`):
 

package/dist/commands/service/configure.js

@@ -12,7 +12,7 @@ export const configureCommand = new Command('configure')
             process.exit(1);
         }
         const existing = await readConfig();
-        console.log('\nSSL Pilot — Update Service Config\n');
+        console.log('\nCertOps — Update Service Config\n');
         console.log('  (API key is stored in the systemd unit, not changed here)\n');
         const intervalStr = await input({
             message: 'Check interval (hours):',

package/dist/commands/service/control.js

@@ -30,16 +30,16 @@ function requireRoot() {
     }
 }
 export const startCommand = new Command('start')
-    .description('Start the SSL Pilot service')
+    .description('Start the CertOps service')
     .action(() => { requireRoot(); systemctl(['start', UNIT]); });
 export const stopCommand = new Command('stop')
-    .description('Stop the SSL Pilot service')
+    .description('Stop the CertOps service')
     .action(() => { requireRoot(); systemctl(['stop', UNIT]); });
 export const restartCommand = new Command('restart')
     .description('Restart the service — picks up config.json changes immediately')
     .action(() => { requireRoot(); systemctl(['restart', UNIT]); });
 export const statusCommand = new Command('status')
-    .description('Show SSL Pilot service status')
+    .description('Show CertOps service status')
     .action(() => { systemctl(['status', UNIT]); });
 export const checkCommand = new Command('check')
     .description('Run one renewal check cycle immediately (for testing)')
@@ -65,10 +65,10 @@ export const checkCommand = new Command('check')
     }
 });
 export const uninstallServiceCommand = new Command('uninstall')
-    .description('Stop, disable, and remove the SSL Pilot service unit')
+    .description('Stop, disable, and remove the CertOps service unit')
     .action(async () => {
     requireRoot();
-    process.stdout.write('\nRemoving SSL Pilot service…\n\n');
+    process.stdout.write('\nRemoving CertOps service…\n\n');
     systemctl(['stop', UNIT], false);
     systemctl(['disable', UNIT], false);
     try {

package/dist/commands/service/daemon.js

@@ -24,7 +24,7 @@ async function tick() {
 export const daemonCommand = new Command('run')
     .description('Run the monitoring daemon (managed by systemd)')
     .action(async () => {
-    log('SSL Pilot daemon starting.');
+    log('CertOps daemon starting.');
     process.on('SIGTERM', () => { log('SIGTERM — shutting down.'); process.exit(0); });
     process.on('SIGINT', () => { log('SIGINT — shutting down.'); process.exit(0); });
     while (true) {

package/dist/commands/service/index.js

@@ -4,7 +4,7 @@ import { configureCommand } from './configure.js';
 import { daemonCommand } from './daemon.js';
 import { startCommand, stopCommand, restartCommand, statusCommand, checkCommand, uninstallServiceCommand } from './control.js';
 export const serviceCommand = new Command('service')
-    .description('Manage the SSL Pilot auto-renewal background service')
+    .description('Manage the CertOps auto-renewal background service')
     .addHelpText('after', `
 Commands:
   install      Interactive setup — writes config, hooks, and installs systemd unit

package/dist/commands/service/install.js

@@ -2,13 +2,13 @@ import { Command } from 'commander';
 import input from '@inquirer/input';
 import { writeFile, mkdir } from 'fs/promises';
 import { spawnSync } from 'child_process';
-import { readConfig, writeConfig, SSL_PILOT_DIR, HOOKS_DIR } from '../../config.js';
+import { readConfig, writeConfig, CERTOPS_DIR, HOOKS_DIR } from '../../config.js';
 import { domainHookPath, GLOBAL_HOOK } from '../../hooks.js';
 const UNIT_PATH = '/etc/systemd/system/certops.service';
 function buildUnitContent(apiKey) {
     return `\
 [Unit]
-Description=SSL Pilot Certificate Monitor
+Description=CertOps Certificate Monitor
 After=network-online.target
 Wants=network-online.target
 
@@ -28,18 +28,18 @@ WantedBy=multi-user.target
 }
 const HOOK_TEMPLATE = `#!/usr/bin/env bash
 # Available env vars:
-#   SSL_PILOT_CERT_NAME       — certificate name (e.g. *.example.com)
-#   SSL_PILOT_DOMAIN          — domain name (certName from API)
-#   SSL_PILOT_FULLCHAIN_PATH  — path to fullchain.pem
-#   SSL_PILOT_CERT_PATH       — path to cert.pem
-#   SSL_PILOT_CHAIN_PATH      — path to chain.pem
-#   SSL_PILOT_KEY_PATH        — path to privkey.pem
+#   CERTOPS_CERT_NAME       — certificate name (e.g. *.example.com)
+#   CERTOPS_DOMAIN          — domain name (certName from API)
+#   CERTOPS_FULLCHAIN_PATH  — path to fullchain.pem
+#   CERTOPS_CERT_PATH       — path to cert.pem
+#   CERTOPS_CHAIN_PATH      — path to chain.pem
+#   CERTOPS_KEY_PATH        — path to privkey.pem
 
 # Example: reload nginx after cert update
 # systemctl reload nginx
 `;
 export const installCommand = new Command('install')
-    .description('Install and configure the SSL Pilot background service')
+    .description('Install and configure the CertOps background service')
     .action(async () => {
     try {
         if (process.getuid?.() !== 0) {
@@ -47,7 +47,7 @@ export const installCommand = new Command('install')
             console.error('\n  sudo -E sp service install\n');
             process.exit(1);
         }
-        console.log('\nSSL Pilot Service Setup\n');
+        console.log('\nCertOps Service Setup\n');
         const existing = await readConfig();
         // API key — env takes precedence, otherwise prompt
         const apiKey = process.env['CERTOPS_API_KEY'] ?? await input({
@@ -82,7 +82,7 @@ export const installCommand = new Command('install')
         };
         // Write config + create directories
         await writeConfig(config);
-        await mkdir(SSL_PILOT_DIR, { recursive: true });
+        await mkdir(CERTOPS_DIR, { recursive: true });
         await mkdir(HOOKS_DIR, { recursive: true });
         console.log('\n✓ Config written to /etc/certops/config.json');
         // Create hook stubs only if they don't exist yet

package/dist/commands/service/renew.js

@@ -68,11 +68,11 @@ export async function runRenewalCycle(apiKey, log) {
                 log(`  key       : ${paths.keyPath}`);
                 await updateCertState(cert.certName, cert.expiryDate ?? '');
                 await runHooks(cert.certName, {
-                    SSL_PILOT_DOMAIN: cert.certName,
-                    SSL_PILOT_FULLCHAIN_PATH: paths.fullchainPath,
-                    SSL_PILOT_CERT_PATH: paths.certPath,
-                    SSL_PILOT_CHAIN_PATH: paths.chainPath,
-                    SSL_PILOT_KEY_PATH: paths.keyPath,
+                    CERTOPS_DOMAIN: cert.certName,
+                    CERTOPS_FULLCHAIN_PATH: paths.fullchainPath,
+                    CERTOPS_CERT_PATH: paths.certPath,
+                    CERTOPS_CHAIN_PATH: paths.chainPath,
+                    CERTOPS_KEY_PATH: paths.keyPath,
                 }, log);
                 downloaded++;
                 lastError = undefined;

package/dist/config.js

@@ -1,8 +1,8 @@
 import { readFile, writeFile, mkdir } from 'fs/promises';
 import { join } from 'path';
-export const SSL_PILOT_DIR = '/etc/certops';
-export const HOOKS_DIR = join(SSL_PILOT_DIR, 'hooks');
-const CONFIG_PATH = join(SSL_PILOT_DIR, 'config.json');
+export const CERTOPS_DIR = '/etc/certops';
+export const HOOKS_DIR = join(CERTOPS_DIR, 'hooks');
+const CONFIG_PATH = join(CERTOPS_DIR, 'config.json');
 const DEFAULTS = {
     renewalThresholdDays: 5,
     checkIntervalHours: 12,
@@ -21,7 +21,7 @@ export async function readConfig() {
     }
 }
 export async function writeConfig(config) {
-    await mkdir(SSL_PILOT_DIR, { recursive: true });
+    await mkdir(CERTOPS_DIR, { recursive: true });
     await writeFile(CONFIG_PATH, JSON.stringify(config, null, 2) + '\n', {
         encoding: 'utf8',
         mode: 0o600,

package/dist/files.js

@@ -1,10 +1,10 @@
 import { mkdir, writeFile, chmod } from 'fs/promises';
 import { join } from 'path';
 import { unzipSync } from 'fflate';
-import { SSL_PILOT_DIR } from './config.js';
+import { CERTOPS_DIR } from './config.js';
 export async function saveZip(certName, zipBuffer) {
     const zipDirName = certName.replace(/^\*\./, 'wildcard.');
-    const dir = join(SSL_PILOT_DIR, zipDirName);
+    const dir = join(CERTOPS_DIR, zipDirName);
     let entries;
     try {
         entries = unzipSync(new Uint8Array(zipBuffer));

package/dist/hooks.js

@@ -33,7 +33,7 @@ async function execHook(scriptPath, vars) {
 }
 export async function runHooks(certName, vars, log) {
     const domainHook = domainHookPath(certName);
-    const hookVars = { ...vars, SSL_PILOT_CERT_NAME: certName };
+    const hookVars = { ...vars, CERTOPS_CERT_NAME: certName };
     if (await fileExists(domainHook)) {
         log(`  Running domain hook: ${domainHook}`);
         try {

package/dist/state.js

@@ -1,8 +1,8 @@
 import { readFile, writeFile, rename, mkdir } from 'fs/promises';
 import { join } from 'path';
 import { randomBytes } from 'crypto';
-import { SSL_PILOT_DIR } from './config.js';
-const STATE_PATH = join(SSL_PILOT_DIR, 'state.json');
+import { CERTOPS_DIR } from './config.js';
+const STATE_PATH = join(CERTOPS_DIR, 'state.json');
 export async function readState() {
     try {
         const raw = await readFile(STATE_PATH, 'utf8');
@@ -15,11 +15,11 @@ export async function readState() {
     }
 }
 export async function updateCertState(certName, expiryDate) {
-    await mkdir(SSL_PILOT_DIR, { recursive: true });
+    await mkdir(CERTOPS_DIR, { recursive: true });
     const state = await readState();
     state[certName] = { expiryDate, downloadedAt: new Date().toISOString() };
     const content = JSON.stringify(state, null, 2) + '\n';
-    const tmp = join(SSL_PILOT_DIR, `.state-${randomBytes(4).toString('hex')}.tmp`);
+    const tmp = join(CERTOPS_DIR, `.state-${randomBytes(4).toString('hex')}.tmp`);
     await writeFile(tmp, content, { encoding: 'utf8', mode: 0o600 });
     await rename(tmp, STATE_PATH);
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "certops",
-  "version": "1.0.9",
+  "version": "1.0.11",
   "description": "SSL Pilot CLI — download and manage your SSL certificates",
   "type": "module",
   "files": [