fatchan
/
haproxy-panel-next
mirror of https://gitgud.io/fatchan/haproxy-panel-next.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Next.js+React web interface for controlling HAProxy clusters (groups of servers), in conjunction with with https://gitgud.io/fatchan/haproxy-protection.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
95 Commits
3 Branches
0 Tags
8.1 MiB
 
 
Tag: Branch: Tree: da886e3d72
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'da886e3d72'
${ noResults }
haproxy-panel-next/acme.js

103 lines
3.0 KiB
Raw Blame History

'use strict';
const fs = require('fs').promises;
const acme = require('acme-client');
const dev = process.env.NODE_ENV !== 'production';
/**
* Function used to satisfy an ACME challenge
*
* @param {object} authz Authorization object
* @param {object} challenge Selected challenge
* @param {string} keyAuthorization Authorization key
* @returns {Promise}
*/
async function challengeCreateFn(authz, challenge, keyAuthorization) {
console.log('Triggered challengeCreateFn()');
/* http-01 */
if (challenge.type === 'http-01') {
const filePath = `/tmp/acme-tests/.well-known/acme-challenge/${challenge.token}`;
const fileContents = keyAuthorization;
console.log(`Creating challenge response for ${authz.identifier.value} at path: ${filePath}`);
await fs.writeFile(filePath, fileContents);
}
/* dns-01 */
else if (challenge.type === 'dns-01') {
const dnsRecord = `_acme-challenge.${authz.identifier.value}`;
const recordValue = keyAuthorization;
console.log(`Creating TXT record for ${authz.identifier.value}: ${dnsRecord}`);
/* Replace this */
console.log(`Would create TXT record "${dnsRecord}" with value "${recordValue}"`);
// await dnsProvider.createRecord(dnsRecord, 'TXT', recordValue);
}
}
/**
* Function used to remove an ACME challenge response
*
* @param {object} authz Authorization object
* @param {object} challenge Selected challenge
* @param {string} keyAuthorization Authorization key
* @returns {Promise}
*/
async function challengeRemoveFn(authz, challenge, keyAuthorization) {
console.log('Triggered challengeRemoveFn()');
/* http-01 */
if (challenge.type === 'http-01') {
const filePath = `/tmp/acme-tests/.well-known/acme-challenge/${challenge.token}`;
console.log(`Removing challenge response for ${authz.identifier.value} at path: ${filePath}`);
await fs.unlink(filePath);
}
/* dns-01 */
else if (challenge.type === 'dns-01') {
const dnsRecord = `_acme-challenge.${authz.identifier.value}`;
const recordValue = keyAuthorization;
console.log(`Removing TXT record for ${authz.identifier.value}: ${dnsRecord}`);
/* Replace this */
console.log(`Would remove TXT record "${dnsRecord}" with value "${recordValue}"`);
// await dnsProvider.removeRecord(dnsRecord, 'TXT');
}
}
module.exports = {
client: null,
init: async function() {
/* Init client */
module.exports.client = new acme.Client({
directoryUrl: dev ? acme.directory.letsencrypt.staging : acme.directory.letsencrypt.production,
accountKey: await acme.crypto.createPrivateKey()
});
},
generate: async function(domain, altnames, email='tom@69420.me') {
/* Create CSR */
const [key, csr] = await acme.crypto.createCsr({
commonName: domain,
altNames: altnames,
});
/* Certificate */
const cert = await module.exports.client.auto({
csr,
email,
termsOfServiceAgreed: true,
skipChallengeVerification: true,
challengeCreateFn,
challengeRemoveFn
});
/* Done */
const haproxyCert = `${cert.toString()}\n${key.toString()}`;
return { key, csr, cert, haproxyCert, date: new Date() };
},
};