은승우 / LINEBOT

Go to a project
Toggle navigation Toggle navigation pinning
Switch branch/tag
acme-client.js 3.39 KB
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 
/*!
 * letiny
 * Copyright(c) 2015 Anatol Sommer <anatol@anatol.at>
 * Some code used from https://github.com/letsencrypt/boulder/tree/master/test/js
 * MPL 2.0
*/
'use strict';

module.exports.create = function (deps) {

  var NOOP = function () {
  };
  var log = NOOP;
  var acmeRequest = deps.acmeRequest;
  var RSA = deps.RSA;
  var generateSignature = RSA.signJws;

  function Acme(keypair) {
    if (!keypair) {
      throw new Error("no keypair given. that's bad");
    }
    if ('string' === typeof keypair) {
      // backwards compat
      keypair = RSA.import({ privateKeyPem: keypair });
    }
    this.keypair = keypair;
    this.nonces=[];
  }

  Acme.prototype.getNonce=function(url, cb) {
    var self=this;

    acmeRequest.create().head({
      url:url,
    }, function(err, res/*, body*/) {
      if (err) {
        return cb(err);
      }
      if (res && 'replay-nonce' in res.headers) {
        log('Storing nonce: '+res.headers['replay-nonce']);
        self.nonces.push(res.headers['replay-nonce']);
        cb();
        return;
      }

      cb(new Error('Failed to get nonce for request'));
    });
  };

  Acme.prototype.post=function(url, body, cb) {
    var self=this, payload, jws, signed;

    if (this.nonces.length===0) {
      this.getNonce(url, function(err) {
        if (err) {
          return cb(err);
        }
        self.post(url, body, cb);
      });
      return;
    }

    log('Using nonce: '+this.nonces[0]);
    payload=JSON.stringify(body, null, 2);
    jws=generateSignature(
        self.keypair, new Buffer(payload), this.nonces.shift()
    );
    signed=JSON.stringify(jws, null, 2);

    log('Posting to '+url);
    log(signed);
    log('Payload:'+payload);

//process.exit(1);
//return;
    return acmeRequest.create().post({
      url: url
    , body: signed
    , encoding: null
    }, function(err, res, body) {
      var parsed;

      if (err) {
        console.error('[letiny-core/lib/acme-client.js] post');
        console.error(err.stack);
        return cb(err);
      }
      if (res) {
        log(('HTTP/1.1 '+res.statusCode));
      }

      Object.keys(res.headers).forEach(function(key) {
        var value, upcased;
        value=res.headers[key];
        upcased=key.charAt(0).toUpperCase()+key.slice(1);
        log((upcased+': '+value));
      });

      if (body && !body.toString().match(/[^\x00-\x7F]/)) {
        try {
          parsed=JSON.parse(body);
          log(JSON.stringify(parsed, null, 2));
        } catch(err) {
          log(body.toString());
        }
      }

      if ('replay-nonce' in res.headers) {
        log('Storing nonce: '+res.headers['replay-nonce']);
        self.nonces.push(res.headers['replay-nonce']);
      }

      cb(err, res, body);
    });
  };

  Acme.parseLink = function parseLink(link) {
    var links;
    try {
      links=link.split(',').map(function(link) {
        var parts, url, info;
        parts=link.trim().split(';');
        url=parts.shift().replace(/[<>]/g, '');
        info=parts.reduce(function(acc, p) {
          var m=p.trim().match(/(.+) *= *"(.+)"/);
          if (m) {
            acc[m[1]]=m[2];
          }
          return acc;
        }, {});
        info.url=url;
        return info;
      }).reduce(function(acc, link) {
        if ('rel' in link) {
          acc[link.rel]=link.url;
        }
        return acc;
      }, {});
      return links;
    } catch(err) {
      return null;
    }
  };

  return Acme;
};