83 lines
2.1 KiB
JavaScript
Raw Normal View History

2015-12-16 02:44:44 +00:00
/*!
* letiny-core
* Copyright(c) 2015 AJ ONeal <aj@daplie.com> https://daplie.com
* Apache-2.0 OR MIT (and hence also MPL 2.0)
*/
'use strict';
2015-12-16 02:00:41 +00:00
// That will fail unless you have a webserver running on 80 and 443 (or 5001)
// to respond to `/.well-known/acme-challenge/xxxxxxxx` with the proper token
module.exports.init = function (deps) {
var tls = require('tls');
var https = require('https');
var http = require('http');
var LeCore = deps.LeCore;
var httpsOptions = deps.httpsOptions;
var challengeStore = deps.challengeStore;
var certStore = deps.certStore;
//
// Challenge Handler
//
function acmeResponder(req, res) {
if (0 !== req.url.indexOf(LeCore.acmeChallengePrefix)) {
res.end('Hello World!');
return;
}
var key = req.url.slice(LeCore.acmeChallengePrefix.length);
challengeStore.get(req.hostname, key, function (err, val) {
res.end(val || 'Error');
});
}
//
// SNI Cert Handler
//
function certGetter(hostname, cb) {
2015-12-16 03:28:40 +00:00
console.log('SNICallback says hello!', hostname);
2015-12-16 02:00:41 +00:00
certStore.get(hostname, function (err, certs) {
if (!certs) {
cb(null, null);
return;
}
// Note: you should cache this context in memory
// so that you aren't creating a new one every time
var context = tls.createSecureContext({
2015-12-16 03:28:40 +00:00
cert: certs.cert.toString('ascii') + '\n' + certs.ca.toString('ascii')
2015-12-16 02:00:41 +00:00
, key: certs.key
});
cb(null, context);
});
}
//
// Server
//
httpsOptions.SNICallback = certGetter;
https.createServer(httpsOptions, acmeResponder).listen(443, function () {
console.log('Listening https on', this.address());
});
https.createServer(httpsOptions, acmeResponder).listen(5001, function () {
console.log('Listening https on', this.address());
});
2015-12-16 03:28:40 +00:00
http.createServer(acmeResponder).listen(80, function () {
2015-12-16 02:00:41 +00:00
console.log('Listening http on', this.address());
});
2015-12-16 04:09:22 +00:00
return function () {
// Note: we should just keep a handle on
// the servers and close them each with server.close()
process.exit(1);
};
2015-12-16 02:00:41 +00:00
};