| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  | 'use strict'; | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-10-09 23:54:27 +11:00
										 |  |  | var DAY = 24 * 60 * 60 * 1000; | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  | var LE = require('letsencrypt'); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | module.exports.run = function (args) { | 
					
						
							|  |  |  |   var leChallenge; | 
					
						
							|  |  |  |   var leStore; | 
					
						
							|  |  |  |   var servers; | 
					
						
							|  |  |  |   var USE_DNS = {}; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |   var challengeType; | 
					
						
							|  |  |  |   if (args.dns01) { | 
					
						
							|  |  |  |     challengeType = 'dns-01'; | 
					
						
							|  |  |  |     args.webrootPath = ''; | 
					
						
							|  |  |  |     args.standalone = USE_DNS; | 
					
						
							| 
									
										
										
										
											2016-10-12 02:22:37 +11:00
										 |  |  |   } else if (args.tlsSni01Port || args.hooks) { | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |     challengeType = 'tls-sni-01'; | 
					
						
							| 
									
										
										
										
											2016-10-08 15:16:26 +11:00
										 |  |  |     args.webrootPath = ''; | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |   } else /*if (args.http01Port)*/ { | 
					
						
							|  |  |  |     challengeType = 'http-01'; | 
					
						
							|  |  |  |   } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-08-09 23:39:07 -04:00
										 |  |  |   if (args.manual) { | 
					
						
							|  |  |  |     leChallenge = require('le-challenge-manual').create({}); | 
					
						
							|  |  |  |   } | 
					
						
							| 
									
										
										
										
											2016-10-12 02:22:37 +11:00
										 |  |  |   else if (args.hooks) { | 
					
						
							|  |  |  |     leChallenge = require('le-challenge-hooks').create({ | 
					
						
							|  |  |  |       hooksPath: args.hooksPath | 
					
						
							|  |  |  |     , hooksServer: args.hooksServer | 
					
						
							|  |  |  |     , hooksTemplate: args.hooksTemplate | 
					
						
							|  |  |  |     , hooksBind: args.hooksBind | 
					
						
							|  |  |  |     , hooksPort: args.hooksPort | 
					
						
							|  |  |  |     , hooksWebroot: args.hooksWebroot | 
					
						
							|  |  |  |     , hooksPreEnable: args.hooksPreEnable | 
					
						
							|  |  |  |     , hooksEnable: args.hooksEnable | 
					
						
							|  |  |  |     , hooksPreReload: args.hooksPreReload | 
					
						
							|  |  |  |     , hooksReload: args.hooksReload | 
					
						
							|  |  |  |     , hooksDisable: args.hooksDisable | 
					
						
							| 
									
										
										
										
											2016-10-09 18:31:18 +11:00
										 |  |  |     }); | 
					
						
							|  |  |  |   } | 
					
						
							| 
									
										
										
										
											2016-08-09 23:39:07 -04:00
										 |  |  |   else if (args.webrootPath) { | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |     // webrootPath is all that really matters here
 | 
					
						
							| 
									
										
										
										
											2016-08-09 23:39:07 -04:00
										 |  |  |     // TODO rename le-challenge-fs to le-challenge-webroot
 | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |     leChallenge = require('./lib/webroot').create({ webrootPath: args.webrootPath }); | 
					
						
							|  |  |  |   } | 
					
						
							| 
									
										
										
										
											2016-10-08 15:16:26 +11:00
										 |  |  |   else if (args.tlsSni01Port) { | 
					
						
							|  |  |  |     leChallenge = require('le-challenge-sni').create({}); | 
					
						
							|  |  |  |     servers = require('./lib/servers').create(leChallenge); | 
					
						
							|  |  |  |   } | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |   else if (USE_DNS !== args.standalone) { | 
					
						
							| 
									
										
										
										
											2016-08-09 23:39:07 -04:00
										 |  |  |     leChallenge = require('le-challenge-standalone').create({}); | 
					
						
							| 
									
										
										
										
											2016-10-08 15:16:26 +11:00
										 |  |  |     servers = require('./lib/servers').create(leChallenge); | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |   } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-10-12 02:22:37 +11:00
										 |  |  |   var privkeyPath = args.domainKeyPath || ':configDir/live/:hostname/privkey.pem'; //args.privkeyPath
 | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |   leStore = require('le-store-certbot').create({ | 
					
						
							|  |  |  |     configDir: args.configDir | 
					
						
							| 
									
										
										
										
											2016-10-12 02:22:37 +11:00
										 |  |  |   , privkeyPath: privkeyPath | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |   , fullchainPath: args.fullchainPath | 
					
						
							|  |  |  |   , certPath: args.certPath | 
					
						
							|  |  |  |   , chainPath: args.chainPath | 
					
						
							|  |  |  |   , webrootPath: args.webrootPath | 
					
						
							|  |  |  |   , domainKeyPath: args.domainKeyPath | 
					
						
							|  |  |  |   , accountKeyPath: args.accountKeyPath | 
					
						
							|  |  |  |   }); | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-08-11 11:39:10 -06:00
										 |  |  |   if (!args.server) { | 
					
						
							|  |  |  |     throw new Error("You must specify a server to use with --server"); | 
					
						
							|  |  |  |   } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |   // let LE know that we're handling standalone / webroot here
 | 
					
						
							| 
									
										
										
										
											2016-10-08 15:16:26 +11:00
										 |  |  |   var leChallenges = {}; | 
					
						
							|  |  |  |   leChallenges[challengeType] = leChallenge; | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |   var le = LE.create({ | 
					
						
							|  |  |  |     debug: args.debug | 
					
						
							|  |  |  |   , server: args.server | 
					
						
							|  |  |  |   , store: leStore | 
					
						
							| 
									
										
										
										
											2016-10-08 15:16:26 +11:00
										 |  |  |   , challenges: leChallenges | 
					
						
							| 
									
										
										
										
											2016-10-09 23:54:27 +11:00
										 |  |  |   , renewWithin: args.renewWithin * DAY | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |   , duplicate: args.duplicate | 
					
						
							|  |  |  |   }); | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-10-08 15:16:26 +11:00
										 |  |  |   if (servers) { | 
					
						
							|  |  |  |     if (args.tlsSni01Port) { | 
					
						
							|  |  |  |       servers = servers.startServers( | 
					
						
							|  |  |  |         [], args.tlsSni01Port | 
					
						
							|  |  |  |       , { debug: args.debug, httpsOptions: le.httpsOptions } | 
					
						
							|  |  |  |       ); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  |     else { | 
					
						
							|  |  |  |       servers = servers.startServers( | 
					
						
							|  |  |  |         args.http01Port || [80], [] | 
					
						
							|  |  |  |       , { debug: args.debug } | 
					
						
							|  |  |  |       ); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  |   } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |   // Note: can't use args directly as null values will overwrite template values
 | 
					
						
							|  |  |  |   le.register({ | 
					
						
							| 
									
										
										
										
											2016-10-09 23:54:27 +11:00
										 |  |  |     debug: args.debug | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |   , email: args.email | 
					
						
							|  |  |  |   , agreeTos: args.agreeTos | 
					
						
							| 
									
										
										
										
											2016-10-09 23:54:27 +11:00
										 |  |  |   , domains: args.domains | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |   , rsaKeySize: args.rsaKeySize | 
					
						
							| 
									
										
										
										
											2016-10-09 23:54:27 +11:00
										 |  |  |   , challengeType: challengeType | 
					
						
							|  |  |  |   }).then(function (certs) { | 
					
						
							|  |  |  |     if (!certs._renewing) { | 
					
						
							|  |  |  |       return certs; | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  |     console.log(""); | 
					
						
							|  |  |  |     console.log("Got certificate(s) for " + certs.altnames.join(', ')); | 
					
						
							|  |  |  |     console.log("\tIssued at " + new Date(certs.issuedAt).toISOString() + ""); | 
					
						
							|  |  |  |     console.log("\tValid until " + new Date(certs.expiresAt).toISOString() + ""); | 
					
						
							|  |  |  |     console.log(""); | 
					
						
							|  |  |  |     console.log("Renewing them now"); | 
					
						
							|  |  |  |     return certs._renewing; | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |   }).then(function (certs) { | 
					
						
							|  |  |  |     if (servers) { | 
					
						
							|  |  |  |       servers.closeServers(); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-10-09 23:54:27 +11:00
										 |  |  |     console.log(""); | 
					
						
							|  |  |  |     console.log("Got certificate(s) for " + certs.altnames.join(', ')); | 
					
						
							|  |  |  |     console.log("\tIssued at " + new Date(certs.issuedAt).toISOString() + ""); | 
					
						
							|  |  |  |     console.log("\tValid until " + new Date(certs.expiresAt).toISOString() + ""); | 
					
						
							|  |  |  |     console.log(""); | 
					
						
							| 
									
										
										
										
											2016-10-12 02:22:37 +11:00
										 |  |  |     console.log('Private key installed at:'); | 
					
						
							|  |  |  |     console.log( | 
					
						
							|  |  |  |       privkeyPath | 
					
						
							|  |  |  |       .replace(/:configDir/g, args.configDir) | 
					
						
							|  |  |  |       .replace(/:hostname/g, args.domains[0]) | 
					
						
							|  |  |  |     ); | 
					
						
							|  |  |  |     console.log(""); | 
					
						
							| 
									
										
										
										
											2016-10-09 23:54:27 +11:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  |     // should get back account, path to certs, pems, etc?
 | 
					
						
							| 
									
										
										
										
											2016-10-12 02:22:37 +11:00
										 |  |  |     console.log('Certificates installed at:'); | 
					
						
							|  |  |  |     console.log( | 
					
						
							|  |  |  |       [ | 
					
						
							|  |  |  |         args.certPath | 
					
						
							|  |  |  |       , args.chainPath | 
					
						
							|  |  |  |       , args.fullchainPath | 
					
						
							|  |  |  |       ].join('\n') | 
					
						
							|  |  |  |       .replace(/:configDir/g, args.configDir) | 
					
						
							|  |  |  |       .replace(/:hostname/g, args.domains[0]) | 
					
						
							|  |  |  |     ); | 
					
						
							|  |  |  |     console.log(""); | 
					
						
							| 
									
										
										
										
											2016-08-09 22:39:39 -04:00
										 |  |  | 
 | 
					
						
							|  |  |  |     process.exit(0); | 
					
						
							|  |  |  |   }, function (err) { | 
					
						
							|  |  |  |     console.error('[Error]: letsencrypt-cli'); | 
					
						
							|  |  |  |     console.error(err.stack || new Error('get stack').stack); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     process.exit(1); | 
					
						
							|  |  |  |   }); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | }; |