forked from TrueCloudLab/lego
42941ccea6
- Packages - Isolate code used by the CLI into the package `cmd` - (experimental) Add e2e tests for HTTP01, TLS-ALPN-01 and DNS-01, use [Pebble](https://github.com/letsencrypt/pebble) and [challtestsrv](https://github.com/letsencrypt/boulder/tree/master/test/challtestsrv) - Support non-ascii domain name (punnycode) - Check all challenges in a predictable order - No more global exported variables - Archive revoked certificates - Fixes revocation for subdomains and non-ascii domains - Disable pending authorizations - use pointer for RemoteError/ProblemDetails - Poll authz URL instead of challenge URL - The ability for a DNS provider to solve the challenge sequentially - Check all nameservers in a predictable order - Option to disable the complete propagation Requirement - CLI, support for renew with CSR - CLI, add SAN on renew - Add command to list certificates. - Logs every iteration of waiting for the propagation - update DNSimple client - update github.com/miekg/dns
60 lines
1.5 KiB
Go
60 lines
1.5 KiB
Go
// Package memcached implements a HTTP provider for solving the HTTP-01 challenge using memcached
|
|
// in combination with a webserver.
|
|
package memcached
|
|
|
|
import (
|
|
"fmt"
|
|
"path"
|
|
|
|
"github.com/rainycape/memcache"
|
|
"github.com/xenolf/lego/challenge/http01"
|
|
)
|
|
|
|
// HTTPProvider implements HTTPProvider for `http-01` challenge
|
|
type HTTPProvider struct {
|
|
hosts []string
|
|
}
|
|
|
|
// NewMemcachedProvider returns a HTTPProvider instance with a configured webroot path
|
|
func NewMemcachedProvider(hosts []string) (*HTTPProvider, error) {
|
|
if len(hosts) == 0 {
|
|
return nil, fmt.Errorf("no memcached hosts provided")
|
|
}
|
|
|
|
c := &HTTPProvider{
|
|
hosts: hosts,
|
|
}
|
|
|
|
return c, nil
|
|
}
|
|
|
|
// Present makes the token available at `HTTP01ChallengePath(token)` by creating a file in the given webroot path
|
|
func (w *HTTPProvider) Present(domain, token, keyAuth string) error {
|
|
var errs []error
|
|
|
|
challengePath := path.Join("/", http01.ChallengePath(token))
|
|
for _, host := range w.hosts {
|
|
mc, err := memcache.New(host)
|
|
if err != nil {
|
|
errs = append(errs, err)
|
|
continue
|
|
}
|
|
_ = mc.Add(&memcache.Item{
|
|
Key: challengePath,
|
|
Value: []byte(keyAuth),
|
|
Expiration: 60,
|
|
})
|
|
}
|
|
|
|
if len(errs) == len(w.hosts) {
|
|
return fmt.Errorf("unable to store key in any of the memcache hosts -> %v", errs)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// CleanUp removes the file created for the challenge
|
|
func (w *HTTPProvider) CleanUp(domain, token, keyAuth string) error {
|
|
// Memcached will clean up itself, that's what expiration is for.
|
|
return nil
|
|
}
|