feat(server): implement tls certificate hot-reload

2025-05-10 18:05:48 +02:00 · 2025-04-04 17:22:50 +08:00 · 2025-04-04 17:22:50 +08:00 · de1860718e
commit de1860718e
parent 269397e114
4 changed files with 64 additions and 11 deletions
--- a/api/settings/settings.go
+++ b/api/settings/settings.go
@ -3,14 +3,13 @@ package settings
 import (
 	"fmt"
 	"net/http"
-	"time"

+	"github.com/0xJacky/Nginx-UI/internal/cert"
 	"github.com/0xJacky/Nginx-UI/internal/cron"
 	"github.com/0xJacky/Nginx-UI/internal/nginx"
 	"github.com/0xJacky/Nginx-UI/internal/system"
 	"github.com/0xJacky/Nginx-UI/settings"
 	"github.com/gin-gonic/gin"
-	"github.com/jpillora/overseer"
 	"github.com/uozi-tech/cosy"
 	cSettings "github.com/uozi-tech/cosy/settings"
 )
@ -84,9 +83,9 @@ func SaveSettings(c *gin.Context) {
 	}

 	// Validate SSL certificates if HTTPS is enabled
-	needRestart := false
+	needReloadCert := false
 	if json.Server.EnableHTTPS != cSettings.ServerSettings.EnableHTTPS {
-		needRestart = true
+		needReloadCert = true
 	}

 	if json.Server.EnableHTTPS {
@ -112,10 +111,9 @@ func SaveSettings(c *gin.Context) {
 		return
 	}

-	if needRestart {
+	if needReloadCert {
 		go func() {
-			time.Sleep(2 * time.Second)
-			overseer.Restart()
+			cert.ReloadServerTLSCertificate()
 		}()
 	}