[SSL证书]免费证书申请增加HTTP认证方式

2025-11-17 19:00:25 +08:00 · 2020-12-03 18:19:28 +08:00
parent 60e971e79b
commit bdd26a8c41
4 changed files with 48 additions and 1 deletions
--- a/internal/nodes/http_request_acme.go
+++ b/internal/nodes/http_request_acme.go
@@ -0,0 +1,33 @@
+package nodes
+
+import (
+	"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"
+	"github.com/TeaOSLab/EdgeNode/internal/logs"
+	"github.com/TeaOSLab/EdgeNode/internal/rpc"
+	"net/http"
+	"path/filepath"
+)
+
+func (this *HTTPRequest) doACME() {
+	// TODO 对请求进行校验，防止恶意攻击
+
+	token := filepath.Base(this.RawReq.URL.Path)
+
+	rpcClient, err := rpc.SharedRPC()
+	if err != nil {
+		logs.Error("RPC", "[ACME]rpc failed: "+err.Error())
+		return
+	}
+
+	keyResp, err := rpcClient.ACMEAuthenticationRPC().FindACMEAuthenticationKeyWithToken(rpcClient.Context(), &pb.FindACMEAuthenticationKeyWithTokenRequest{Token: token})
+	if err != nil {
+		logs.Error("RPC", "[ACME]read key for token failed: "+err.Error())
+		return
+	}
+	if len(keyResp.Key) == 0 {
+		this.writer.WriteHeader(http.StatusNotFound)
+	} else {
+		this.writer.Header().Set("Content-Type", "text/plain")
+		_, _ = this.writer.WriteString(keyResp.Key)
+	}
+}