| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 |
- package cert
- import (
- "github.com/0xJacky/Nginx-UI/server/model"
- "log"
- "strings"
- "time"
- )
- func handleIssueCertLogChan(logChan chan string) {
- defer func() {
- if err := recover(); err != nil {
- log.Println("[Auto Cert] handleIssueCertLogChan", err)
- }
- }()
- for logString := range logChan {
- log.Println("[Auto Cert] Info", logString)
- }
- }
- func AutoCert() {
- defer func() {
- if err := recover(); err != nil {
- log.Println("[AutoCert] Recover", err)
- }
- }()
- log.Println("[AutoCert] Start")
- autoCertList := model.GetAutoCertList()
- for i := range autoCertList {
- domain := autoCertList[i].Domain
- certModel, err := model.FirstCert(domain)
- if err != nil {
- log.Println("[AutoCert] Error get certificate from database", err)
- continue
- }
- if certModel.SSLCertificatePath == "" {
- log.Println("[AutoCert] Error ssl_certificate_path is empty, " +
- "try to reopen auto-cert for this domain:" + domain)
- continue
- }
- cert, err := GetCertInfo(certModel.SSLCertificatePath)
- if err != nil {
- log.Println("GetCertInfo Err", err)
- // Get certificate info error, ignore this domain
- continue
- }
- // before 1 mo
- if time.Now().Before(cert.NotBefore.AddDate(0, 1, 0)) {
- continue
- }
- // after 1 mo, reissue certificate
- logChan := make(chan string, 1)
- errChan := make(chan error, 1)
- // support SAN certification
- go IssueCert(strings.Split(domain, "_"), logChan, errChan)
- go handleIssueCertLogChan(logChan)
- // block, unless errChan closed
- for err = range errChan {
- log.Println("Error cert.IssueCert", err)
- }
- close(logChan)
- }
- }
|
