feat: change challenge method in certificate management page

2025-05-11 10:25:52 +02:00 · 2023-12-03 20:49:02 +08:00 · 2023-12-03 20:49:02 +08:00 · 5b3cd981e9
commit 5b3cd981e9
parent 002d9c22ab
33 changed files with 1875 additions and 1496 deletions
--- a/api/certificate/issue.go
+++ b/api/certificate/issue.go
@ -0,0 +1,142 @@
+package certificate
+
+import (
+	"github.com/0xJacky/Nginx-UI/internal/cert"
+	"github.com/0xJacky/Nginx-UI/internal/logger"
+	"github.com/0xJacky/Nginx-UI/internal/nginx"
+	"github.com/0xJacky/Nginx-UI/model"
+	"github.com/gin-gonic/gin"
+	"github.com/gorilla/websocket"
+	"net/http"
+	"strings"
+)
+
+const (
+	Success = "success"
+	Info    = "info"
+	Error   = "error"
+)
+
+type IssueCertResponse struct {
+	Status            string `json:"status"`
+	Message           string `json:"message"`
+	SSLCertificate    string `json:"ssl_certificate,omitempty"`
+	SSLCertificateKey string `json:"ssl_certificate_key,omitempty"`
+}
+
+func handleIssueCertLogChan(conn *websocket.Conn, logChan chan string) {
+	defer func() {
+		if err := recover(); err != nil {
+			logger.Error(err)
+		}
+	}()
+
+	for logString := range logChan {
+
+		err := conn.WriteJSON(IssueCertResponse{
+			Status:  Info,
+			Message: logString,
+		})
+
+		if err != nil {
+			logger.Error(err)
+			return
+		}
+
+	}
+}
+
+func IssueCert(c *gin.Context) {
+	var upGrader = websocket.Upgrader{
+		CheckOrigin: func(r *http.Request) bool {
+			return true
+		},
+	}
+
+	// upgrade http to websocket
+	ws, err := upGrader.Upgrade(c.Writer, c.Request, nil)
+	if err != nil {
+		logger.Error(err)
+		return
+	}
+
+	defer func(ws *websocket.Conn) {
+		_ = ws.Close()
+	}(ws)
+
+	// read
+	buffer := &cert.ConfigPayload{}
+
+	err = ws.ReadJSON(buffer)
+
+	if err != nil {
+		logger.Error(err)
+		return
+	}
+
+	certModel, err := model.FirstOrCreateCert(c.Param("name"))
+
+	if err != nil {
+		logger.Error(err)
+		return
+	}
+
+	logChan := make(chan string, 1)
+	errChan := make(chan error, 1)
+
+	go cert.IssueCert(buffer, logChan, errChan)
+
+	go handleIssueCertLogChan(ws, logChan)
+
+	// block, until errChan closes
+	for err = range errChan {
+		errLog := &cert.AutoCertErrorLog{}
+		errLog.SetCertModel(&certModel)
+		errLog.Exit("issue cert", err)
+
+		err = ws.WriteJSON(IssueCertResponse{
+			Status:  Error,
+			Message: err.Error(),
+		})
+
+		if err != nil {
+			logger.Error(err)
+			return
+		}
+
+		return
+	}
+
+	certDirName := strings.Join(buffer.ServerName, "_")
+	sslCertificatePath := nginx.GetConfPath("ssl", certDirName, "fullchain.cer")
+	sslCertificateKeyPath := nginx.GetConfPath("ssl", certDirName, "private.key")
+
+	err = certModel.Updates(&model.Cert{
+		Domains:               buffer.ServerName,
+		SSLCertificatePath:    sslCertificatePath,
+		SSLCertificateKeyPath: sslCertificateKeyPath,
+	})
+
+	if err != nil {
+		logger.Error(err)
+		err = ws.WriteJSON(IssueCertResponse{
+			Status:  Error,
+			Message: err.Error(),
+		})
+		return
+	}
+
+	certModel.ClearLog()
+
+	err = ws.WriteJSON(IssueCertResponse{
+		Status:            Success,
+		Message:           "Issued certificate successfully",
+		SSLCertificate:    sslCertificatePath,
+		SSLCertificateKey: sslCertificateKeyPath,
+	})
+
+	if err != nil {
+		logger.Error(err)
+		return
+	}
+}