greenlock-express.js/master.js

'use strict';

// opts.addWorker(worker)
// opts.approveDomains(options, certs, cb)
module.exports.create = function (opts) {
  opts = opts || { };
  opts.webrootPath = opts.webrootPath || require('os').tmpdir() + require('path').sep + 'acme-challenge';
  if (!opts.letsencrypt) { opts.letsencrypt = require('letsencrypt').create(opts); }
  if ('function' !== typeof opts.approveDomains) {
    throw new Error("You must provide opts.approveDomains(domain, certs, callback) to approve certificates");
  }

  function log(debug) {
    if (!debug) {
      return;
    }

    var args = Array.prototype.slice.call(arguments);
    args.shift();
    args.unshift("[le/lib/core.js]");
    console.log.apply(console, args);
  }

  opts._le = opts.letsencrypt;
  opts.addWorker = function (worker) {

    worker.on('online', function () {
      log(opts.debug, 'worker is up');
    });

    worker.on('message', function (msg) {
      log(opts.debug, 'Message from worker ' + worker.id);
      if ('LE_REQUEST' !== (msg && msg.type)) {
        log(opts.debug, 'Ignoring irrelevant message');
        log(opts.debug, msg);
        return;
      }

      log(opts.debug, 'about to approveDomains');
      opts.approveDomains(msg.options, msg.certs, function (err, results) {
        if (err) {
          log(opts.debug, 'Approval got ERROR', err.stack || err);
          worker.send({
            type: 'LE_RESPONSE'
          , domain: msg.domain
          , error: { message: err.message, code: err.code, stack: err.stack }
          });
          return;
        }

        var promise;

        //
        /*
        var certs = require('localhost.daplie.com-certificates').merge({
          subject: msg.domain
        , altnames: [ msg.domain ]
        , issuedAt: Date.now()
        , expiresAt: Date.now() + (90 * 24 * 60 * 60 * 1000)
        });
        certs.privkey = certs.key.toString('ascii');
        certs.cert = certs.cert.toString('ascii');
        certs.chain = '';
        worker.send({ type: 'LE_RESPONSE', domain: msg.domain, certs: certs });
        return;
        // */

        if (results.certs) {
          promise = opts._le.renew(results.options, results.certs);
        }
        else {
          promise = opts._le.register(results.options);
        }

        promise.then(function (certs) {
          log(opts.debug, 'Approval got certs', certs);
          // certs = { subject, domains, issuedAt, expiresAt, privkey, cert, chain };
          worker.send({ type: 'LE_RESPONSE', domain: msg.domain, certs: certs });
        }, function (err) {
          log(opts.debug, 'Approval got ERROR', err.stack || err);
          worker.send({ type: 'LE_RESPONSE', domain: msg.domain, error: err });
        });
      });
    });
  };

  return opts;
};