forked from TrueCloudLab/lego
42941ccea6
- Packages - Isolate code used by the CLI into the package `cmd` - (experimental) Add e2e tests for HTTP01, TLS-ALPN-01 and DNS-01, use [Pebble](https://github.com/letsencrypt/pebble) and [challtestsrv](https://github.com/letsencrypt/boulder/tree/master/test/challtestsrv) - Support non-ascii domain name (punnycode) - Check all challenges in a predictable order - No more global exported variables - Archive revoked certificates - Fixes revocation for subdomains and non-ascii domains - Disable pending authorizations - use pointer for RemoteError/ProblemDetails - Poll authz URL instead of challenge URL - The ability for a DNS provider to solve the challenge sequentially - Check all nameservers in a predictable order - Option to disable the complete propagation Requirement - CLI, support for renew with CSR - CLI, add SAN on renew - Add command to list certificates. - Logs every iteration of waiting for the propagation - update DNSimple client - update github.com/miekg/dns
53 lines
1.6 KiB
Go
53 lines
1.6 KiB
Go
// Package webroot implements a HTTP provider for solving the HTTP-01 challenge using web server's root path.
|
|
package webroot
|
|
|
|
import (
|
|
"fmt"
|
|
"io/ioutil"
|
|
"os"
|
|
"path/filepath"
|
|
|
|
"github.com/xenolf/lego/challenge/http01"
|
|
)
|
|
|
|
// HTTPProvider implements ChallengeProvider for `http-01` challenge
|
|
type HTTPProvider struct {
|
|
path string
|
|
}
|
|
|
|
// NewHTTPProvider returns a HTTPProvider instance with a configured webroot path
|
|
func NewHTTPProvider(path string) (*HTTPProvider, error) {
|
|
if _, err := os.Stat(path); os.IsNotExist(err) {
|
|
return nil, fmt.Errorf("webroot path does not exist")
|
|
}
|
|
|
|
return &HTTPProvider{path: path}, nil
|
|
}
|
|
|
|
// Present makes the token available at `HTTP01ChallengePath(token)` by creating a file in the given webroot path
|
|
func (w *HTTPProvider) Present(domain, token, keyAuth string) error {
|
|
var err error
|
|
|
|
challengeFilePath := filepath.Join(w.path, http01.ChallengePath(token))
|
|
err = os.MkdirAll(filepath.Dir(challengeFilePath), 0755)
|
|
if err != nil {
|
|
return fmt.Errorf("could not create required directories in webroot for HTTP challenge -> %v", err)
|
|
}
|
|
|
|
err = ioutil.WriteFile(challengeFilePath, []byte(keyAuth), 0644)
|
|
if err != nil {
|
|
return fmt.Errorf("could not write file in webroot for HTTP challenge -> %v", err)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// CleanUp removes the file created for the challenge
|
|
func (w *HTTPProvider) CleanUp(domain, token, keyAuth string) error {
|
|
err := os.Remove(filepath.Join(w.path, http01.ChallengePath(token)))
|
|
if err != nil {
|
|
return fmt.Errorf("could not remove file in webroot after HTTP challenge -> %v", err)
|
|
}
|
|
|
|
return nil
|
|
}
|