le-acme-core.js/example/serve.js

/*!
 * letiny-core
 * Copyright(c) 2015 AJ ONeal <aj@daplie.com> https://daplie.com
 * Apache-2.0 OR MIT (and hence also MPL 2.0)
*/
'use strict';

// That will fail unless you have a webserver running on 80 and 443 (or 5001)
// to respond to `/.well-known/acme-challenge/xxxxxxxx` with the proper token

module.exports.init = function (deps) {
  var tls = require('tls');
  var https = require('https');
  var http = require('http');


  var LeCore = deps.LeCore;
  var httpsOptions = deps.httpsOptions;
  var challengeStore = deps.challengeStore;
  var certStore = deps.certStore;


  //
  // Challenge Handler
  //
  function acmeResponder(req, res) {
    if (0 !== req.url.indexOf(LeCore.acmeChallengePrefix)) {
      res.end('Hello World!');
      return;
    }

    var key = req.url.slice(LeCore.acmeChallengePrefix.length);

    challengeStore.get(req.hostname, key, function (err, val) {
      res.end(val || 'Error');
    });
  }


  //
  // SNI Cert Handler
  //
  function certGetter(hostname, cb) {
    console.log('SNICallback says hello!', hostname);
    certStore.get(hostname, function (err, certs) {
      if (!certs) {
        cb(null, null);
        return;
      }

      // Note: you should cache this context in memory
      // so that you aren't creating a new one every time
      var context = tls.createSecureContext({
        cert: certs.cert.toString('ascii') + '\n' + certs.ca.toString('ascii')
      , key: certs.key
      });

      cb(null, context);
    });
  }


  //
  // Server
  //
  httpsOptions.SNICallback = certGetter;
  https.createServer(httpsOptions, acmeResponder).listen(443, function () {
    console.log('Listening https on', this.address());
  });
  https.createServer(httpsOptions, acmeResponder).listen(5001, function () {
    console.log('Listening https on', this.address());
  });
  http.createServer(acmeResponder).listen(80, function () {
    console.log('Listening http on', this.address());
  });

  return function () {
    // Note: we should just keep a handle on
    // the servers and close them each with server.close()
    process.exit(1); 
  };
};
updates 2015-12-16 02:44:44 +00:00			`/*!`
			`* letiny-core`
			`* Copyright(c) 2015 AJ ONeal <aj@daplie.com> https://daplie.com`
			`* Apache-2.0 OR MIT (and hence also MPL 2.0)`
			`*/`
			`'use strict';`

working up the example 2015-12-16 02:00:41 +00:00			`// That will fail unless you have a webserver running on 80 and 443 (or 5001)`
			// to respond to `/.well-known/acme-challenge/xxxxxxxx` with the proper token

			`module.exports.init = function (deps) {`
			`var tls = require('tls');`
			`var https = require('https');`
			`var http = require('http');`


			`var LeCore = deps.LeCore;`
			`var httpsOptions = deps.httpsOptions;`
			`var challengeStore = deps.challengeStore;`
			`var certStore = deps.certStore;`


			`//`
			`// Challenge Handler`
			`//`
			`function acmeResponder(req, res) {`
			`if (0 !== req.url.indexOf(LeCore.acmeChallengePrefix)) {`
			`res.end('Hello World!');`
			`return;`
			`}`

			`var key = req.url.slice(LeCore.acmeChallengePrefix.length);`

			`challengeStore.get(req.hostname, key, function (err, val) {`
			`res.end(val \|\| 'Error');`
			`});`
			`}`


			`//`
			`// SNI Cert Handler`
			`//`
			`function certGetter(hostname, cb) {`
WORKSgit status! 2015-12-16 03:28:40 +00:00			`console.log('SNICallback says hello!', hostname);`
working up the example 2015-12-16 02:00:41 +00:00			`certStore.get(hostname, function (err, certs) {`
			`if (!certs) {`
			`cb(null, null);`
			`return;`
			`}`

			`// Note: you should cache this context in memory`
			`// so that you aren't creating a new one every time`
			`var context = tls.createSecureContext({`
WORKSgit status! 2015-12-16 03:28:40 +00:00			`cert: certs.cert.toString('ascii') + '\n' + certs.ca.toString('ascii')`
working up the example 2015-12-16 02:00:41 +00:00			`, key: certs.key`
			`});`

			`cb(null, context);`
			`});`
			`}`


			`//`
			`// Server`
			`//`
			`httpsOptions.SNICallback = certGetter;`
			`https.createServer(httpsOptions, acmeResponder).listen(443, function () {`
			`console.log('Listening https on', this.address());`
			`});`
			`https.createServer(httpsOptions, acmeResponder).listen(5001, function () {`
			`console.log('Listening https on', this.address());`
			`});`
WORKSgit status! 2015-12-16 03:28:40 +00:00			`http.createServer(acmeResponder).listen(80, function () {`
working up the example 2015-12-16 02:00:41 +00:00			`console.log('Listening http on', this.address());`
			`});`
exit when complete 2015-12-16 04:09:22 +00:00
			`return function () {`
			`// Note: we should just keep a handle on`
			`// the servers and close them each with server.close()`
			`process.exit(1);`
			`};`
working up the example 2015-12-16 02:00:41 +00:00			`};`