mirror of
https://github.com/go-acme/lego.git
synced 2025-01-12 20:21:14 +02:00
42941ccea6
- Packages - Isolate code used by the CLI into the package `cmd` - (experimental) Add e2e tests for HTTP01, TLS-ALPN-01 and DNS-01, use [Pebble](https://github.com/letsencrypt/pebble) and [challtestsrv](https://github.com/letsencrypt/boulder/tree/master/test/challtestsrv) - Support non-ascii domain name (punnycode) - Check all challenges in a predictable order - No more global exported variables - Archive revoked certificates - Fixes revocation for subdomains and non-ascii domains - Disable pending authorizations - use pointer for RemoteError/ProblemDetails - Poll authz URL instead of challenge URL - The ability for a DNS provider to solve the challenge sequentially - Check all nameservers in a predictable order - Option to disable the complete propagation Requirement - CLI, support for renew with CSR - CLI, add SAN on renew - Add command to list certificates. - Logs every iteration of waiting for the propagation - update DNSimple client - update github.com/miekg/dns
122 lines
2.3 KiB
Go
122 lines
2.3 KiB
Go
package cmd
|
|
|
|
import (
|
|
"encoding/json"
|
|
"fmt"
|
|
"io/ioutil"
|
|
"net/url"
|
|
"path/filepath"
|
|
"strings"
|
|
|
|
"github.com/urfave/cli"
|
|
"github.com/xenolf/lego/certcrypto"
|
|
)
|
|
|
|
func createList() cli.Command {
|
|
return cli.Command{
|
|
Name: "list",
|
|
Usage: "Display certificates and accounts information.",
|
|
Action: list,
|
|
Flags: []cli.Flag{
|
|
cli.BoolFlag{
|
|
Name: "accounts, a",
|
|
Usage: "Display accounts.",
|
|
},
|
|
},
|
|
}
|
|
}
|
|
|
|
func list(ctx *cli.Context) error {
|
|
if ctx.Bool("accounts") {
|
|
if err := listAccount(ctx); err != nil {
|
|
return err
|
|
}
|
|
}
|
|
|
|
return listCertificates(ctx)
|
|
}
|
|
|
|
func listCertificates(ctx *cli.Context) error {
|
|
certsStorage := NewCertificatesStorage(ctx)
|
|
|
|
matches, err := filepath.Glob(filepath.Join(certsStorage.GetRootPath(), "*.crt"))
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if len(matches) == 0 {
|
|
fmt.Println("No certificates found.")
|
|
return nil
|
|
}
|
|
|
|
fmt.Println("Found the following certs:")
|
|
for _, filename := range matches {
|
|
if strings.HasSuffix(filename, ".issuer.crt") {
|
|
continue
|
|
}
|
|
|
|
data, err := ioutil.ReadFile(filename)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
pCert, err := certcrypto.ParsePEMCertificate(data)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
fmt.Println(" Certificate Name:", pCert.Subject.CommonName)
|
|
fmt.Println(" Domains:", strings.Join(pCert.DNSNames, ", "))
|
|
fmt.Println(" Expiry Date:", pCert.NotAfter)
|
|
fmt.Println(" Certificate Path:", filename)
|
|
fmt.Println()
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func listAccount(ctx *cli.Context) error {
|
|
// fake email, needed by NewAccountsStorage
|
|
if err := ctx.GlobalSet("email", "unknown"); err != nil {
|
|
return err
|
|
}
|
|
|
|
accountsStorage := NewAccountsStorage(ctx)
|
|
|
|
matches, err := filepath.Glob(filepath.Join(accountsStorage.GetRootPath(), "*", "*", "*.json"))
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if len(matches) == 0 {
|
|
fmt.Println("No accounts found.")
|
|
return nil
|
|
}
|
|
|
|
fmt.Println("Found the following accounts:")
|
|
for _, filename := range matches {
|
|
data, err := ioutil.ReadFile(filename)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
var account Account
|
|
err = json.Unmarshal(data, &account)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
uri, err := url.Parse(account.Registration.URI)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
fmt.Println(" Email:", account.Email)
|
|
fmt.Println(" Server:", uri.Host)
|
|
fmt.Println(" Path:", filepath.Dir(filename))
|
|
fmt.Println()
|
|
}
|
|
|
|
return nil
|
|
}
|