From d379afa95cbe9ae1ea07b2a594de13892103df8a Mon Sep 17 00:00:00 2001
From: Jacky <me@jackyu.cn>
Date: Sat, 12 Apr 2025 11:15:56 +0000
Subject: [PATCH] feat(maintainance): add acme-challenge location handling

---
 .devcontainer/init-nginx.sh  |  5 ++++-
 internal/site/maintenance.go | 24 ++++++++++++++++++++----
 2 files changed, 24 insertions(+), 5 deletions(-)

diff --git a/.devcontainer/init-nginx.sh b/.devcontainer/init-nginx.sh
index 87080779..38ce5206 100755
--- a/.devcontainer/init-nginx.sh
+++ b/.devcontainer/init-nginx.sh
@@ -3,4 +3,7 @@ if [ "$(ls -A /etc/nginx)" = "" ]; then
     echo "Initialing Nginx config dir"
     cp -rp /etc/nginx.orig/* /etc/nginx/
     echo "Initialed Nginx config dir"
-fi
\ No newline at end of file
+fi
+
+# start nginx
+nginx -g "daemon off;"
diff --git a/internal/site/maintenance.go b/internal/site/maintenance.go
index 98a12767..d93916c1 100644
--- a/internal/site/maintenance.go
+++ b/internal/site/maintenance.go
@@ -12,11 +12,12 @@ import (
 	"github.com/0xJacky/Nginx-UI/internal/nginx"
 	"github.com/0xJacky/Nginx-UI/internal/notification"
 	"github.com/0xJacky/Nginx-UI/model"
+	"github.com/0xJacky/Nginx-UI/settings"
 	"github.com/go-resty/resty/v2"
 	"github.com/tufanbarisyildirim/gonginx/config"
 	"github.com/tufanbarisyildirim/gonginx/parser"
 	"github.com/uozi-tech/cosy/logger"
-	"github.com/uozi-tech/cosy/settings"
+	cSettings "github.com/uozi-tech/cosy/settings"
 )
 
 const MaintenanceSuffix = "_nginx_ui_maintenance"
@@ -152,9 +153,9 @@ func DisableMaintenance(name string) (err error) {
 
 // createMaintenanceConfig creates a maintenance configuration based on the original config
 func createMaintenanceConfig(conf *config.Config) string {
-	nginxUIPort := settings.ServerSettings.Port
+	nginxUIPort := cSettings.ServerSettings.Port
 	schema := "http"
-	if settings.ServerSettings.EnableHTTPS {
+	if cSettings.ServerSettings.EnableHTTPS {
 		schema = "https"
 	}
 
@@ -218,13 +219,28 @@ func createMaintenanceConfig(conf *config.Config) string {
 			ngxServer.Directives = append(ngxServer.Directives, ngxDirective)
 		}
 
+		// Add acme-challenge location
+		acmeChallengeLocation := &nginx.NgxLocation{
+			Path: "^~ /.well-known/acme-challenge",
+		}
+
+		// Build location content using string builder
+		var locationContent strings.Builder
+		locationContent.WriteString("proxy_set_header Host $host;\n")
+		locationContent.WriteString("proxy_set_header X-Real-IP $remote_addr;\n")
+		locationContent.WriteString("proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n")
+		locationContent.WriteString(fmt.Sprintf("proxy_pass http://127.0.0.1:%s;\n", settings.CertSettings.HTTPChallengePort))
+		acmeChallengeLocation.Content = locationContent.String()
+
+		ngxServer.Locations = append(ngxServer.Locations, acmeChallengeLocation)
+
 		// Add maintenance mode location
 		location := &nginx.NgxLocation{
 			Path: "~ .*",
 		}
 
+		locationContent.Reset()
 		// Build location content using string builder
-		var locationContent strings.Builder
 		locationContent.WriteString("proxy_set_header Host $host;\n")
 		locationContent.WriteString("proxy_set_header X-Real-IP $remote_addr;\n")
 		locationContent.WriteString("proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n")