github
/
certd
mirror of https://github.com/certd/certd
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge branch 'v2' into v2-dev

pull/411/head
xiaojunnuo 2025-06-03 17:45:50 +08:00
parent 6a0cc1b1f3 5d71a4dbde
commit e15212bf49
2 changed files with 40 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
packages/ui/certd-server/src/plugins/plugin-flex/access.ts
View File

@ -78,7 +78,8 @@ export class FlexCDNAccess extends BaseAccess {
vModel: "checked" vModel: "checked"
}, },
encrypt: false, encrypt: false,
required: true required: true,
value: false,
}) })
skipSslVerify!: boolean; skipSslVerify!: boolean;

38
packages/ui/certd-server/src/plugins/plugin-flex/plugins/plugin-refresh-cert.ts
View File

@ -3,6 +3,7 @@ import { CertApplyPluginNames, CertInfo } from "@certd/plugin-cert";
import { createCertDomainGetterInputDefine, createRemoteSelectInputDefine } from "@certd/plugin-lib"; import { createCertDomainGetterInputDefine, createRemoteSelectInputDefine } from "@certd/plugin-lib";
import { FlexCDNAccess } from "../access.js"; import { FlexCDNAccess } from "../access.js";
import { FlexCDNClient } from "../client.js"; import { FlexCDNClient } from "../client.js";
import crypto from 'crypto'
@IsTaskPlugin({ @IsTaskPlugin({
//命名规范,插件类型+功能就是目录plugin-demo中的demo大写字母开头驼峰命名 //命名规范,插件类型+功能就是目录plugin-demo中的demo大写字母开头驼峰命名
@ -61,6 +62,41 @@ export class FlexCDNRefreshCert extends AbstractTaskPlugin {
async onInstance() { async onInstance() {
} }
static parseCertInfo(certPem: string) {
const certificateArray = certPem
.trim()
.split('-----END CERTIFICATE-----')
.filter(cert => cert.trim() !== '')
.map(cert => (cert + '-----END CERTIFICATE-----').trim());
const currentInfo = new crypto.X509Certificate(certificateArray[0])
const dnsNames = currentInfo.subjectAltName.split(',')
.map(it => it.trim())
.filter(it => it.startsWith('DNS:'))
.map(it => it.substring(4))
const commonNames = certificateArray.map(it => {
const info = new crypto.X509Certificate(it)
const subjectCN = info.issuer.trim()
.split('\n')
.map(it => it.trim())
.find((part) => part.trim().startsWith('CN='))
?.split('=')[1]
?.trim();
return subjectCN
})
return {
commonNames: commonNames,
dnsNames: dnsNames,
timeBeginAt: Math.floor((new Date(currentInfo.validFrom)).getTime() / 1000),
timeEndAt: Math.floor((new Date(currentInfo.validTo)).getTime() / 1000),
}
}
//插件执行方法 //插件执行方法
async execute(): Promise<void> { async execute(): Promise<void> {
const access: FlexCDNAccess = await this.getAccess<FlexCDNAccess>(this.accessId); const access: FlexCDNAccess = await this.getAccess<FlexCDNAccess>(this.accessId);
@ -84,6 +120,8 @@ export class FlexCDNRefreshCert extends AbstractTaskPlugin {
const sslCert = JSON.parse(this.ctx.utils.hash.base64Decode(res.sslCertJSON)) const sslCert = JSON.parse(this.ctx.utils.hash.base64Decode(res.sslCertJSON))
this.logger.info(`证书信息:${sslCert.name}${sslCert.dnsNames}`); this.logger.info(`证书信息:${sslCert.name}${sslCert.dnsNames}`);
const body = { const body = {
...sslCert, // inherit old cert info like name and description
...FlexCDNRefreshCert.parseCertInfo(this.cert.crt),
name: sslCert.name, name: sslCert.name,
sslCertId: item, sslCertId: item,
certData: this.ctx.utils.hash.base64(this.cert.crt), certData: this.ctx.utils.hash.base64(this.cert.crt),