| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240 | package certificateimport (	"github.com/0xJacky/Nginx-UI/api"	"github.com/0xJacky/Nginx-UI/internal/cert"	"github.com/0xJacky/Nginx-UI/internal/cosy"	"github.com/0xJacky/Nginx-UI/internal/nginx"	"github.com/0xJacky/Nginx-UI/internal/notification"	"github.com/0xJacky/Nginx-UI/model"	"github.com/0xJacky/Nginx-UI/query"	"github.com/gin-gonic/gin"	"github.com/go-acme/lego/v4/certcrypto"	"github.com/spf13/cast"	"net/http"	"os")type APICertificate struct {	*model.Cert	SSLCertificate    string     `json:"ssl_certificate,omitempty"`	SSLCertificateKey string     `json:"ssl_certificate_key,omitempty"`	CertificateInfo   *cert.Info `json:"certificate_info,omitempty"`}func Transformer(certModel *model.Cert) (certificate *APICertificate) {	var sslCertificationBytes, sslCertificationKeyBytes []byte	var certificateInfo *cert.Info	if certModel.SSLCertificatePath != "" {		if _, err := os.Stat(certModel.SSLCertificatePath); err == nil {			sslCertificationBytes, _ = os.ReadFile(certModel.SSLCertificatePath)			if !cert.IsCertificate(string(sslCertificationBytes)) {				sslCertificationBytes = []byte{}			}		}		certificateInfo, _ = cert.GetCertInfo(certModel.SSLCertificatePath)	}	if certModel.SSLCertificateKeyPath != "" {		if _, err := os.Stat(certModel.SSLCertificateKeyPath); err == nil {			sslCertificationKeyBytes, _ = os.ReadFile(certModel.SSLCertificateKeyPath)			if !cert.IsPrivateKey(string(sslCertificationKeyBytes)) {				sslCertificationKeyBytes = []byte{}			}		}	}	return &APICertificate{		Cert:              certModel,		SSLCertificate:    string(sslCertificationBytes),		SSLCertificateKey: string(sslCertificationKeyBytes),		CertificateInfo:   certificateInfo,	}}func GetCertList(c *gin.Context) {	cosy.Core[model.Cert](c).SetFussy("name", "domain").SetTransformer(func(m *model.Cert) any {		info, _ := cert.GetCertInfo(m.SSLCertificatePath)		return APICertificate{			Cert:            m,			CertificateInfo: info,		}	}).PagingList()}func GetCert(c *gin.Context) {	q := query.Cert	certModel, err := q.FirstByID(cast.ToInt(c.Param("id")))	if err != nil {		api.ErrHandler(c, err)		return	}	c.JSON(http.StatusOK, Transformer(certModel))}type certJson struct {	Name                  string             `json:"name" binding:"required"`	SSLCertificatePath    string             `json:"ssl_certificate_path" binding:"required,certificate_path"`	SSLCertificateKeyPath string             `json:"ssl_certificate_key_path" binding:"required,privatekey_path"`	SSLCertificate        string             `json:"ssl_certificate" binding:"omitempty,certificate"`	SSLCertificateKey     string             `json:"ssl_certificate_key" binding:"omitempty,privatekey"`	KeyType               certcrypto.KeyType `json:"key_type" binding:"omitempty,auto_cert_key_type"`	ChallengeMethod       string             `json:"challenge_method"`	DnsCredentialID       int                `json:"dns_credential_id"`	ACMEUserID            int                `json:"acme_user_id"`	SyncNodeIds           []int              `json:"sync_node_ids"`}func AddCert(c *gin.Context) {	var json certJson	if !api.BindAndValid(c, &json) {		return	}	certModel := &model.Cert{		Name:                  json.Name,		SSLCertificatePath:    json.SSLCertificatePath,		SSLCertificateKeyPath: json.SSLCertificateKeyPath,		KeyType:               json.KeyType,		ChallengeMethod:       json.ChallengeMethod,		DnsCredentialID:       json.DnsCredentialID,		ACMEUserID:            json.ACMEUserID,		SyncNodeIds:           json.SyncNodeIds,	}	err := certModel.Insert()	if err != nil {		api.ErrHandler(c, err)		return	}	content := &cert.Content{		SSLCertificatePath:    json.SSLCertificatePath,		SSLCertificateKeyPath: json.SSLCertificateKeyPath,		SSLCertificate:        json.SSLCertificate,		SSLCertificateKey:     json.SSLCertificateKey,	}	err = content.WriteFile()	if err != nil {		api.ErrHandler(c, err)		return	}	err = cert.SyncToRemoteServer(certModel)	if err != nil {		notification.Error("Sync Certificate Error", err.Error())		return	}	c.JSON(http.StatusOK, Transformer(certModel))}func ModifyCert(c *gin.Context) {	id := cast.ToInt(c.Param("id"))	var json certJson	if !api.BindAndValid(c, &json) {		return	}	q := query.Cert	certModel, err := q.FirstByID(id)	if err != nil {		api.ErrHandler(c, err)		return	}	err = certModel.Updates(&model.Cert{		Name:                  json.Name,		SSLCertificatePath:    json.SSLCertificatePath,		SSLCertificateKeyPath: json.SSLCertificateKeyPath,		ChallengeMethod:       json.ChallengeMethod,		KeyType:               json.KeyType,		DnsCredentialID:       json.DnsCredentialID,		ACMEUserID:            json.ACMEUserID,		SyncNodeIds:           json.SyncNodeIds,	})	if err != nil {		api.ErrHandler(c, err)		return	}	content := &cert.Content{		SSLCertificatePath:    json.SSLCertificatePath,		SSLCertificateKeyPath: json.SSLCertificateKeyPath,		SSLCertificate:        json.SSLCertificate,		SSLCertificateKey:     json.SSLCertificateKey,	}	err = content.WriteFile()	if err != nil {		api.ErrHandler(c, err)		return	}	err = cert.SyncToRemoteServer(certModel)	if err != nil {		notification.Error("Sync Certificate Error", err.Error())		return	}	GetCert(c)}func RemoveCert(c *gin.Context) {	cosy.Core[model.Cert](c).Destroy()}func SyncCertificate(c *gin.Context) {	var json cert.SyncCertificatePayload	if !api.BindAndValid(c, &json) {		return	}	certModel := &model.Cert{		Name:                  json.Name,		SSLCertificatePath:    json.SSLCertificatePath,		SSLCertificateKeyPath: json.SSLCertificateKeyPath,		KeyType:               json.KeyType,		AutoCert:              model.AutoCertSync,	}	db := model.UseDB()	err := db.Where(certModel).FirstOrCreate(certModel).Error	if err != nil {		api.ErrHandler(c, err)		return	}	content := &cert.Content{		SSLCertificatePath:    json.SSLCertificatePath,		SSLCertificateKeyPath: json.SSLCertificateKeyPath,		SSLCertificate:        json.SSLCertificate,		SSLCertificateKey:     json.SSLCertificateKey,	}	err = content.WriteFile()	if err != nil {		api.ErrHandler(c, err)		return	}	nginx.Reload()	c.JSON(http.StatusOK, gin.H{		"message": "ok",	})}
 |