feat: 证书操作

SaltWood-Studio · Dec 20, 2024 · d0dd9f9 · d0dd9f9
1 parent 1e4e5c3
commit d0dd9f9
Show file tree

Hide file tree

Showing 2 changed files with 48 additions and 0 deletions.
diff --git a/src/certificate-manager/ACME.ts b/src/certificate-manager/ACME.ts
@@ -60,4 +60,8 @@ export class ACME {
 
         return [key, csr, certificate, validFrom, expiresAt];
     }
+
+    public revokeCertificate(certificate: acme.CertificateBuffer | acme.CertificateString) {
+        this.client.revokeCertificate(certificate);
+    }
 }
diff --git a/src/routes/ApiAdmin.ts b/src/routes/ApiAdmin.ts
@@ -1,4 +1,5 @@
 import { Config } from "../Config.js";
+import { CertificateObject } from "../database/Certificate.js";
 import { ClusterEntity } from "../database/Cluster.js";
 import { UserEntity } from "../database/User.js";
 import JwtHelper from "../JwtHelper.js";
@@ -91,5 +92,48 @@ export class ApiAdmin {
             });
             res.json(result);
         });
+
+        inst.app.post("/api/admin/certificates/revoke", async (req, res) => {
+            if (!Utilities.verifyAdmin(req, res, inst.db)) return;
+            const data = req.body as {
+                id: string
+            };
+            const cluster = inst.db.getEntity<ClusterEntity>(ClusterEntity, data.id);
+            if (!cluster) {
+                res.status(404).json({ message: "Cluster not found" });
+                return;
+            }
+
+            const cert = inst.db.getEntity<CertificateObject>(CertificateObject, cluster.clusterId);
+            if (!cert) {
+                res.status(404).json({ message: "Certificate not found" });
+                return;
+            }
+
+            await inst.acme?.revokeCertificate(cert.certificate);
+            if (inst.acme) inst.db.remove(CertificateObject, cert);
+
+            res.status(200).json({ message: "Certificate revoked" });
+        });
+
+        inst.app.get("/api/admin/certificates/cluster", async (req, res) => {
+            if (!Utilities.verifyAdmin(req, res, inst.db)) return;
+            const data = req.query as {
+                id: string
+            };
+            const cluster = inst.db.getEntity<ClusterEntity>(ClusterEntity, data.id);
+            if (!cluster) {
+                res.status(404).json({ message: "Cluster not found" });
+                return;
+            }
+
+            const cert = inst.db.getEntity<CertificateObject>(CertificateObject, cluster.clusterId);
+            if (!cert) {
+                res.status(404).json({ message: "Certificate not found" });
+                return;
+            }
+
+            res.status(200).json(cert);
+        });
     }
 }