forked from TrueCloudLab/lego
107 lines
3.1 KiB
Go
107 lines
3.1 KiB
Go
package acme
|
|
|
|
import (
|
|
"time"
|
|
|
|
"github.com/square/go-jose"
|
|
)
|
|
|
|
type directory struct {
|
|
NewAuthzURL string `json:"new-authz"`
|
|
NewCertURL string `json:"new-cert"`
|
|
NewRegURL string `json:"new-reg"`
|
|
RevokeCertURL string `json:"revoke-cert"`
|
|
}
|
|
|
|
type recoveryKeyMessage struct {
|
|
Length int `json:"length,omitempty"`
|
|
Client jose.JsonWebKey `json:"client,omitempty"`
|
|
Server jose.JsonWebKey `json:"client,omitempty"`
|
|
}
|
|
|
|
type registrationMessage struct {
|
|
Resource string `json:"resource"`
|
|
Contact []string `json:"contact"`
|
|
// RecoveryKey recoveryKeyMessage `json:"recoveryKey,omitempty"`
|
|
}
|
|
|
|
// Registration is returned by the ACME server after the registration
|
|
// The client implementation should save this registration somewhere.
|
|
type Registration struct {
|
|
Resource string `json:"resource,omitempty"`
|
|
ID int `json:"id"`
|
|
Key struct {
|
|
Kty string `json:"kty"`
|
|
N string `json:"n"`
|
|
E string `json:"e"`
|
|
} `json:"key"`
|
|
Contact []string `json:"contact"`
|
|
Agreement string `json:"agreement,omitempty"`
|
|
Authorizations string `json:"authorizations,omitempty"`
|
|
Certificates string `json:"certificates,omitempty"`
|
|
// RecoveryKey recoveryKeyMessage `json:"recoveryKey,omitempty"`
|
|
}
|
|
|
|
// RegistrationResource represents all important informations about a registration
|
|
// of which the client needs to keep track itself.
|
|
type RegistrationResource struct {
|
|
Body Registration
|
|
URI string
|
|
NewAuthzURL string
|
|
TosURL string
|
|
}
|
|
|
|
type authorizationResource struct {
|
|
Body authorization
|
|
Domain string
|
|
NewCertURL string
|
|
AuthURL string
|
|
}
|
|
|
|
type authorization struct {
|
|
Resource string `json:"resource,omitempty"`
|
|
Identifier identifier `json:"identifier"`
|
|
Status string `json:"status,omitempty"`
|
|
Expires time.Time `json:"expires,omitempty"`
|
|
Challenges []challenge `json:"challenges,omitempty"`
|
|
Combinations [][]int `json:"combinations,omitempty"`
|
|
}
|
|
|
|
type identifier struct {
|
|
Type string `json:"type"`
|
|
Value string `json:"value"`
|
|
}
|
|
|
|
type challenge struct {
|
|
Resource string `json:"resource,omitempty"`
|
|
Type string `json:"type,omitempty"`
|
|
Status string `json:"status,omitempty"`
|
|
URI string `json:"uri,omitempty"`
|
|
Token string `json:"token,omitempty"`
|
|
KeyAuthorization string `json:"keyAuthorization,omitempty"`
|
|
TLS bool `json:"tls,omitempty"`
|
|
}
|
|
|
|
type csrMessage struct {
|
|
Resource string `json:"resource,omitempty"`
|
|
Csr string `json:"csr"`
|
|
Authorizations []string `json:"authorizations"`
|
|
}
|
|
|
|
type revokeCertMessage struct {
|
|
Resource string `json:"resource"`
|
|
Certificate string `json:"certificate"`
|
|
}
|
|
|
|
// CertificateResource represents a CA issued certificate.
|
|
// PrivateKey and Certificate are both already PEM encoded
|
|
// and can be directly written to disk. Certificate may
|
|
// be a certificate bundle, depending on the options supplied
|
|
// to create it.
|
|
type CertificateResource struct {
|
|
Domain string `json:"domain"`
|
|
CertURL string `json:"certUrl"`
|
|
CertStableURL string `json:"certStableUrl"`
|
|
PrivateKey []byte `json:"-"`
|
|
Certificate []byte `json:"-"`
|
|
}
|