1Panel/backend/app/service/website_ssl.go

package service

import (
	"context"
	"crypto/x509"
	"encoding/pem"
	"github.com/1Panel-dev/1Panel/backend/app/dto/request"
	"github.com/1Panel-dev/1Panel/backend/app/dto/response"
	"github.com/1Panel-dev/1Panel/backend/app/model"
	"github.com/1Panel-dev/1Panel/backend/buserr"
	"github.com/1Panel-dev/1Panel/backend/constant"
	"github.com/1Panel-dev/1Panel/backend/global"
	"github.com/1Panel-dev/1Panel/backend/utils/ssl"
	"path"
	"strings"
)

type WebsiteSSLService struct {
}

type IWebsiteSSLService interface {
	Page(search request.WebsiteSSLSearch) (int64, []response.WebsiteSSLDTO, error)
	GetSSL(id uint) (*response.WebsiteSSLDTO, error)
	Search() ([]response.WebsiteSSLDTO, error)
	Create(create request.WebsiteSSLCreate) (request.WebsiteSSLCreate, error)
	Renew(sslId uint) error
	GetDNSResolve(req request.WebsiteDNSReq) ([]response.WebsiteDNSRes, error)
	GetWebsiteSSL(websiteId uint) (response.WebsiteSSLDTO, error)
	Delete(id uint) error
	Update(update request.WebsiteSSLUpdate) error
}

func NewIWebsiteSSLService() IWebsiteSSLService {
	return &WebsiteSSLService{}
}

func (w WebsiteSSLService) Page(search request.WebsiteSSLSearch) (int64, []response.WebsiteSSLDTO, error) {
	total, sslList, err := websiteSSLRepo.Page(search.Page, search.PageSize, commonRepo.WithOrderBy("created_at desc"))
	if err != nil {
		return 0, nil, err
	}
	var sslDTOs []response.WebsiteSSLDTO
	for _, ssl := range sslList {
		sslDTOs = append(sslDTOs, response.WebsiteSSLDTO{
			WebsiteSSL: ssl,
		})
	}
	return total, sslDTOs, err
}

func (w WebsiteSSLService) GetSSL(id uint) (*response.WebsiteSSLDTO, error) {
	var res response.WebsiteSSLDTO
	websiteSSL, err := websiteSSLRepo.GetFirst(commonRepo.WithByID(id))
	if err != nil {
		return nil, err
	}
	res.WebsiteSSL = websiteSSL
	return &res, nil
}

func (w WebsiteSSLService) Search() ([]response.WebsiteSSLDTO, error) {
	sslList, err := websiteSSLRepo.List()
	if err != nil {
		return nil, err
	}
	var sslDTOs []response.WebsiteSSLDTO
	for _, ssl := range sslList {
		sslDTOs = append(sslDTOs, response.WebsiteSSLDTO{
			WebsiteSSL: ssl,
		})
	}
	return sslDTOs, err
}

func (w WebsiteSSLService) Create(create request.WebsiteSSLCreate) (request.WebsiteSSLCreate, error) {
	var res request.WebsiteSSLCreate
	acmeAccount, err := websiteAcmeRepo.GetFirst(commonRepo.WithByID(create.AcmeAccountID))
	if err != nil {
		return res, err
	}
	client, err := ssl.NewPrivateKeyClient(acmeAccount.Email, acmeAccount.PrivateKey)
	if err != nil {
		return res, err
	}

	switch create.Provider {
	case constant.DNSAccount:
		dnsAccount, err := websiteDnsRepo.GetFirst(commonRepo.WithByID(create.DnsAccountID))
		if err != nil {
			return res, err
		}
		if err := client.UseDns(ssl.DnsType(dnsAccount.Type), dnsAccount.Authorization); err != nil {
			return res, err
		}
	case constant.Http:
		appInstall, err := getAppInstallByKey(constant.AppOpenresty)
		if err != nil {
			return request.WebsiteSSLCreate{}, err
		}
		if err := client.UseHTTP(path.Join(constant.AppInstallDir, constant.AppOpenresty, appInstall.Name, "root")); err != nil {
			return res, err
		}
	case constant.DnsManual:
		if err := client.UseManualDns(); err != nil {
			return res, err
		}
	}

	domains := []string{create.PrimaryDomain}
	otherDomainArray := strings.Split(create.OtherDomains, "\n")
	if create.OtherDomains != "" {
		domains = append(otherDomainArray, domains...)
	}
	resource, err := client.ObtainSSL(domains)
	if err != nil {
		return res, err
	}
	var websiteSSL model.WebsiteSSL
	websiteSSL.DnsAccountID = create.DnsAccountID
	websiteSSL.AcmeAccountID = acmeAccount.ID
	websiteSSL.Provider = create.Provider
	websiteSSL.Domains = strings.Join(otherDomainArray, ",")
	websiteSSL.PrimaryDomain = create.PrimaryDomain
	websiteSSL.PrivateKey = string(resource.PrivateKey)
	websiteSSL.Pem = string(resource.Certificate)
	websiteSSL.CertURL = resource.CertURL
	certBlock, _ := pem.Decode(resource.Certificate)
	cert, err := x509.ParseCertificate(certBlock.Bytes)
	if err != nil {
		return request.WebsiteSSLCreate{}, err
	}
	websiteSSL.ExpireDate = cert.NotAfter
	websiteSSL.StartDate = cert.NotBefore
	websiteSSL.Type = cert.Issuer.CommonName
	websiteSSL.Organization = cert.Issuer.Organization[0]
	websiteSSL.AutoRenew = create.AutoRenew

	if err := websiteSSLRepo.Create(context.TODO(), &websiteSSL); err != nil {
		return res, err
	}

	return create, nil
}

func (w WebsiteSSLService) Renew(sslId uint) error {
	websiteSSL, err := websiteSSLRepo.GetFirst(commonRepo.WithByID(sslId))
	if err != nil {
		return err
	}
	acmeAccount, err := websiteAcmeRepo.GetFirst(commonRepo.WithByID(websiteSSL.AcmeAccountID))
	if err != nil {
		return err
	}

	client, err := ssl.NewPrivateKeyClient(acmeAccount.Email, acmeAccount.PrivateKey)
	if err != nil {
		return err
	}
	switch websiteSSL.Provider {
	case constant.DNSAccount:
		dnsAccount, err := websiteDnsRepo.GetFirst(commonRepo.WithByID(websiteSSL.DnsAccountID))
		if err != nil {
			return err
		}
		if err := client.UseDns(ssl.DnsType(dnsAccount.Type), dnsAccount.Authorization); err != nil {
			return err
		}
	case constant.Http:
		appInstall, err := getAppInstallByKey(constant.AppOpenresty)
		if err != nil {
			return err
		}
		if err := client.UseHTTP(path.Join(constant.AppInstallDir, constant.AppOpenresty, appInstall.Name, "root")); err != nil {
			return err
		}
	}

	resource, err := client.RenewSSL(websiteSSL.CertURL)
	if err != nil {
		return err
	}
	websiteSSL.PrivateKey = string(resource.PrivateKey)
	websiteSSL.Pem = string(resource.Certificate)
	websiteSSL.CertURL = resource.CertURL
	certBlock, _ := pem.Decode(resource.Certificate)
	cert, err := x509.ParseCertificate(certBlock.Bytes)
	if err != nil {
		return err
	}
	websiteSSL.ExpireDate = cert.NotAfter
	websiteSSL.StartDate = cert.NotBefore
	websiteSSL.Type = cert.Issuer.CommonName
	websiteSSL.Organization = cert.Issuer.Organization[0]

	if err := websiteSSLRepo.Save(websiteSSL); err != nil {
		return err
	}

	websites, _ := websiteRepo.GetBy(websiteRepo.WithWebsiteSSLID(sslId))
	for _, website := range websites {
		if err := createPemFile(website, websiteSSL); err != nil {
			global.LOG.Errorf("create website [%s] ssl file failed! err:%s", website.PrimaryDomain, err.Error())
		}
	}
	if len(websites) > 0 {
		nginxInstall, err := getAppInstallByKey(constant.AppOpenresty)
		if err != nil {
			return err
		}
		if err := opNginx(nginxInstall.ContainerName, constant.NginxReload); err != nil {
			return buserr.New(constant.ErrSSLApply)
		}
	}
	return nil
}

func (w WebsiteSSLService) GetDNSResolve(req request.WebsiteDNSReq) ([]response.WebsiteDNSRes, error) {
	acmeAccount, err := websiteAcmeRepo.GetFirst(commonRepo.WithByID(req.AcmeAccountID))
	if err != nil {
		return nil, err
	}

	client, err := ssl.NewPrivateKeyClient(acmeAccount.Email, acmeAccount.PrivateKey)
	if err != nil {
		return nil, err
	}
	resolves, err := client.GetDNSResolve(req.Domains)
	if err != nil {
		return nil, err
	}
	var res []response.WebsiteDNSRes
	for k, v := range resolves {
		res = append(res, response.WebsiteDNSRes{
			Domain: k,
			Key:    v.Key,
			Value:  v.Value,
			Err:    v.Err,
		})
	}
	return res, nil
}

func (w WebsiteSSLService) GetWebsiteSSL(websiteId uint) (response.WebsiteSSLDTO, error) {
	var res response.WebsiteSSLDTO
	website, err := websiteRepo.GetFirst(commonRepo.WithByID(websiteId))
	if err != nil {
		return res, err
	}
	websiteSSL, err := websiteSSLRepo.GetFirst(commonRepo.WithByID(website.WebsiteSSLID))
	if err != nil {
		return res, err
	}
	res.WebsiteSSL = websiteSSL
	return res, nil
}

func (w WebsiteSSLService) Delete(id uint) error {
	if websites, _ := websiteRepo.GetBy(websiteRepo.WithWebsiteSSLID(id)); len(websites) > 0 {
		return buserr.New(constant.ErrSSLCannotDelete)
	}
	return websiteSSLRepo.DeleteBy(commonRepo.WithByID(id))
}

func (w WebsiteSSLService) Update(update request.WebsiteSSLUpdate) error {
	websiteSSL, err := websiteSSLRepo.GetFirst(commonRepo.WithByID(update.ID))
	if err != nil {
		return err
	}
	websiteSSL.AutoRenew = update.AutoRenew
	return websiteSSLRepo.Save(websiteSSL)
}
feat: 增加acme账号管理 2022-11-11 17:41:39 +08:00			`package service`

			`import (`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`"context"`
			`"crypto/x509"`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`"encoding/pem"`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`"github.com/1Panel-dev/1Panel/backend/app/dto/request"`
			`"github.com/1Panel-dev/1Panel/backend/app/dto/response"`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`"github.com/1Panel-dev/1Panel/backend/app/model"`
feat: 修改证书账号等删除校验 2022-12-05 15:50:53 +08:00			`"github.com/1Panel-dev/1Panel/backend/buserr"`
feat: 适配证书 HTTP 模式 2022-11-24 14:58:29 +08:00			`"github.com/1Panel-dev/1Panel/backend/constant"`
feat: 增加自动续签设置 2023-01-04 11:44:43 +08:00			`"github.com/1Panel-dev/1Panel/backend/global"`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`"github.com/1Panel-dev/1Panel/backend/utils/ssl"`
feat: 适配证书 HTTP 模式 2022-11-24 14:58:29 +08:00			`"path"`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`"strings"`
feat: 增加acme账号管理 2022-11-11 17:41:39 +08:00			`)`

style: 修改website的API和model 2022-12-13 17:20:13 +08:00			`type WebsiteSSLService struct {`
feat: 增加acme账号管理 2022-11-11 17:41:39 +08:00			`}`

feat: 增加自动续签设置 2023-01-04 11:44:43 +08:00			`type IWebsiteSSLService interface {`
			`Page(search request.WebsiteSSLSearch) (int64, []response.WebsiteSSLDTO, error)`
			`GetSSL(id uint) (*response.WebsiteSSLDTO, error)`
			`Search() ([]response.WebsiteSSLDTO, error)`
			`Create(create request.WebsiteSSLCreate) (request.WebsiteSSLCreate, error)`
			`Renew(sslId uint) error`
			`GetDNSResolve(req request.WebsiteDNSReq) ([]response.WebsiteDNSRes, error)`
			`GetWebsiteSSL(websiteId uint) (response.WebsiteSSLDTO, error)`
			`Delete(id uint) error`
feat: 证书列表增加设置自动续签功能 (#337) 2023-03-21 14:42:50 +08:00			`Update(update request.WebsiteSSLUpdate) error`
feat: 增加自动续签设置 2023-01-04 11:44:43 +08:00			`}`

			`func NewIWebsiteSSLService() IWebsiteSSLService {`
			`return &WebsiteSSLService{}`
			`}`

style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`func (w WebsiteSSLService) Page(search request.WebsiteSSLSearch) (int64, []response.WebsiteSSLDTO, error) {`
feat: 增加acme账号管理 2022-11-11 17:41:39 +08:00			`total, sslList, err := websiteSSLRepo.Page(search.Page, search.PageSize, commonRepo.WithOrderBy("created_at desc"))`
feat: 增加https设置 2022-11-20 18:32:56 +08:00			`if err != nil {`
			`return 0, nil, err`
			`}`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`var sslDTOs []response.WebsiteSSLDTO`
feat: 增加acme账号管理 2022-11-11 17:41:39 +08:00			`for _, ssl := range sslList {`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`sslDTOs = append(sslDTOs, response.WebsiteSSLDTO{`
style: 修改website的API和model 2022-12-13 17:20:13 +08:00			`WebsiteSSL: ssl,`
feat: 增加acme账号管理 2022-11-11 17:41:39 +08:00			`})`
			`}`
			`return total, sslDTOs, err`
			`}`

feat: 证书增加详情页 2022-12-29 14:55:20 +08:00			`func (w WebsiteSSLService) GetSSL(id uint) (*response.WebsiteSSLDTO, error) {`
			`var res response.WebsiteSSLDTO`
			`websiteSSL, err := websiteSSLRepo.GetFirst(commonRepo.WithByID(id))`
			`if err != nil {`
			`return nil, err`
			`}`
			`res.WebsiteSSL = websiteSSL`
			`return &res, nil`
			`}`

style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`func (w WebsiteSSLService) Search() ([]response.WebsiteSSLDTO, error) {`
feat: 增加https设置 2022-11-20 18:32:56 +08:00			`sslList, err := websiteSSLRepo.List()`
			`if err != nil {`
			`return nil, err`
			`}`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`var sslDTOs []response.WebsiteSSLDTO`
feat: 增加https设置 2022-11-20 18:32:56 +08:00			`for _, ssl := range sslList {`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`sslDTOs = append(sslDTOs, response.WebsiteSSLDTO{`
style: 修改website的API和model 2022-12-13 17:20:13 +08:00			`WebsiteSSL: ssl,`
feat: 增加https设置 2022-11-20 18:32:56 +08:00			`})`
			`}`
			`return sslDTOs, err`
			`}`

style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`func (w WebsiteSSLService) Create(create request.WebsiteSSLCreate) (request.WebsiteSSLCreate, error) {`
			`var res request.WebsiteSSLCreate`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`acmeAccount, err := websiteAcmeRepo.GetFirst(commonRepo.WithByID(create.AcmeAccountID))`
			`if err != nil {`
			`return res, err`
			`}`
			`client, err := ssl.NewPrivateKeyClient(acmeAccount.Email, acmeAccount.PrivateKey)`
			`if err != nil {`
			`return res, err`
			`}`

feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`switch create.Provider {`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`case constant.DNSAccount:`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`dnsAccount, err := websiteDnsRepo.GetFirst(commonRepo.WithByID(create.DnsAccountID))`
			`if err != nil {`
			`return res, err`
			`}`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`if err := client.UseDns(ssl.DnsType(dnsAccount.Type), dnsAccount.Authorization); err != nil {`
			`return res, err`
			`}`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`case constant.Http:`
feat: 修改 OpenResty 的key 为 openresty 2023-02-22 17:13:08 +08:00			`appInstall, err := getAppInstallByKey(constant.AppOpenresty)`
feat: 适配证书 HTTP 模式 2022-11-24 14:58:29 +08:00			`if err != nil {`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`return request.WebsiteSSLCreate{}, err`
feat: 适配证书 HTTP 模式 2022-11-24 14:58:29 +08:00			`}`
feat: 修改 OpenResty 的key 为 openresty 2023-02-22 17:13:08 +08:00			`if err := client.UseHTTP(path.Join(constant.AppInstallDir, constant.AppOpenresty, appInstall.Name, "root")); err != nil {`
feat: 适配证书 HTTP 模式 2022-11-24 14:58:29 +08:00			`return res, err`
			`}`
fix: 解决手动解析模式申请证书失败的BUG 2023-03-16 18:44:32 +08:00			`case constant.DnsManual:`
			`if err := client.UseManualDns(); err != nil {`
			`return res, err`
			`}`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`}`

feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`domains := []string{create.PrimaryDomain}`
			`otherDomainArray := strings.Split(create.OtherDomains, "\n")`
			`if create.OtherDomains != "" {`
			`domains = append(otherDomainArray, domains...)`
			`}`
			`resource, err := client.ObtainSSL(domains)`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`if err != nil {`
			`return res, err`
			`}`
style: 修改website的API和model 2022-12-13 17:20:13 +08:00			`var websiteSSL model.WebsiteSSL`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`websiteSSL.DnsAccountID = create.DnsAccountID`
			`websiteSSL.AcmeAccountID = acmeAccount.ID`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`websiteSSL.Provider = create.Provider`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`websiteSSL.Domains = strings.Join(otherDomainArray, ",")`
			`websiteSSL.PrimaryDomain = create.PrimaryDomain`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`websiteSSL.PrivateKey = string(resource.PrivateKey)`
			`websiteSSL.Pem = string(resource.Certificate)`
			`websiteSSL.CertURL = resource.CertURL`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`certBlock, _ := pem.Decode(resource.Certificate)`
			`cert, err := x509.ParseCertificate(certBlock.Bytes)`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`if err != nil {`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`return request.WebsiteSSLCreate{}, err`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`}`
			`websiteSSL.ExpireDate = cert.NotAfter`
			`websiteSSL.StartDate = cert.NotBefore`
			`websiteSSL.Type = cert.Issuer.CommonName`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`websiteSSL.Organization = cert.Issuer.Organization[0]`
feat: 证书列表增加设置自动续签功能 (#337) 2023-03-21 14:42:50 +08:00			`websiteSSL.AutoRenew = create.AutoRenew`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00
			`if err := websiteSSLRepo.Create(context.TODO(), &websiteSSL); err != nil {`
			`return res, err`
			`}`

			`return create, nil`
			`}`

style: 修改website的API和model 2022-12-13 17:20:13 +08:00			`func (w WebsiteSSLService) Renew(sslId uint) error {`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`websiteSSL, err := websiteSSLRepo.GetFirst(commonRepo.WithByID(sslId))`
			`if err != nil {`
			`return err`
			`}`
			`acmeAccount, err := websiteAcmeRepo.GetFirst(commonRepo.WithByID(websiteSSL.AcmeAccountID))`
			`if err != nil {`
			`return err`
			`}`

			`client, err := ssl.NewPrivateKeyClient(acmeAccount.Email, acmeAccount.PrivateKey)`
			`if err != nil {`
			`return err`
			`}`
			`switch websiteSSL.Provider {`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`case constant.DNSAccount:`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`dnsAccount, err := websiteDnsRepo.GetFirst(commonRepo.WithByID(websiteSSL.DnsAccountID))`
			`if err != nil {`
			`return err`
			`}`
			`if err := client.UseDns(ssl.DnsType(dnsAccount.Type), dnsAccount.Authorization); err != nil {`
			`return err`
			`}`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`case constant.Http:`
feat: 修改 OpenResty 的key 为 openresty 2023-02-22 17:13:08 +08:00			`appInstall, err := getAppInstallByKey(constant.AppOpenresty)`
feat: 网站增加手动导入证书 2022-11-24 17:50:47 +08:00			`if err != nil {`
			`return err`
			`}`
feat: 修改 OpenResty 的key 为 openresty 2023-02-22 17:13:08 +08:00			`if err := client.UseHTTP(path.Join(constant.AppInstallDir, constant.AppOpenresty, appInstall.Name, "root")); err != nil {`
feat: 网站增加手动导入证书 2022-11-24 17:50:47 +08:00			`return err`
			`}`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`}`

			`resource, err := client.RenewSSL(websiteSSL.CertURL)`
			`if err != nil {`
			`return err`
			`}`
			`websiteSSL.PrivateKey = string(resource.PrivateKey)`
			`websiteSSL.Pem = string(resource.Certificate)`
			`websiteSSL.CertURL = resource.CertURL`
			`certBlock, _ := pem.Decode(resource.Certificate)`
			`cert, err := x509.ParseCertificate(certBlock.Bytes)`
			`if err != nil {`
			`return err`
			`}`
			`websiteSSL.ExpireDate = cert.NotAfter`
			`websiteSSL.StartDate = cert.NotBefore`
			`websiteSSL.Type = cert.Issuer.CommonName`
			`websiteSSL.Organization = cert.Issuer.Organization[0]`

feat: 增加自动续签设置 2023-01-04 11:44:43 +08:00			`if err := websiteSSLRepo.Save(websiteSSL); err != nil {`
			`return err`
			`}`

			`websites, _ := websiteRepo.GetBy(websiteRepo.WithWebsiteSSLID(sslId))`
			`for _, website := range websites {`
			`if err := createPemFile(website, websiteSSL); err != nil {`
			`global.LOG.Errorf("create website [%s] ssl file failed! err:%s", website.PrimaryDomain, err.Error())`
			`}`
			`}`
			`if len(websites) > 0 {`
feat: 修改 OpenResty 的key 为 openresty 2023-02-22 17:13:08 +08:00			`nginxInstall, err := getAppInstallByKey(constant.AppOpenresty)`
feat: 增加自动续签设置 2023-01-04 11:44:43 +08:00			`if err != nil {`
			`return err`
			`}`
			`if err := opNginx(nginxInstall.ContainerName, constant.NginxReload); err != nil {`
			`return buserr.New(constant.ErrSSLApply)`
			`}`
			`}`
			`return nil`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`}`

style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`func (w WebsiteSSLService) GetDNSResolve(req request.WebsiteDNSReq) ([]response.WebsiteDNSRes, error) {`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`acmeAccount, err := websiteAcmeRepo.GetFirst(commonRepo.WithByID(req.AcmeAccountID))`
			`if err != nil {`
feat: 增加手动域名解析 2022-11-25 00:08:44 +08:00			`return nil, err`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`}`

			`client, err := ssl.NewPrivateKeyClient(acmeAccount.Email, acmeAccount.PrivateKey)`
			`if err != nil {`
feat: 增加手动域名解析 2022-11-25 00:08:44 +08:00			`return nil, err`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`}`
feat: 增加手动域名解析 2022-11-25 00:08:44 +08:00			`resolves, err := client.GetDNSResolve(req.Domains)`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`if err != nil {`
feat: 增加手动域名解析 2022-11-25 00:08:44 +08:00			`return nil, err`
			`}`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`var res []response.WebsiteDNSRes`
feat: 增加手动域名解析 2022-11-25 00:08:44 +08:00			`for k, v := range resolves {`
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`res = append(res, response.WebsiteDNSRes{`
feat: 增加手动域名解析 2022-11-25 00:08:44 +08:00			`Domain: k,`
			`Key: v.Key,`
			`Value: v.Value,`
			`Err: v.Err,`
			`})`
feat: 增加证书申请 2022-11-16 10:31:35 +08:00			`}`
			`return res, nil`
			`}`
feat: 增加acme账号管理 2022-11-11 17:41:39 +08:00
style: 修改websiteSSL代码结构 2022-12-14 15:26:51 +08:00			`func (w WebsiteSSLService) GetWebsiteSSL(websiteId uint) (response.WebsiteSSLDTO, error) {`
			`var res response.WebsiteSSLDTO`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`website, err := websiteRepo.GetFirst(commonRepo.WithByID(websiteId))`
			`if err != nil {`
			`return res, err`
			`}`
style: 修改website的API和model 2022-12-13 17:20:13 +08:00			`websiteSSL, err := websiteSSLRepo.GetFirst(commonRepo.WithByID(website.WebsiteSSLID))`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`if err != nil {`
			`return res, err`
			`}`
style: 修改website的API和model 2022-12-13 17:20:13 +08:00			`res.WebsiteSSL = websiteSSL`
feat: 修改菜单位置证书管理放在二级菜单 2022-11-17 17:39:33 +08:00			`return res, nil`
			`}`

style: 修改website的API和model 2022-12-13 17:20:13 +08:00			`func (w WebsiteSSLService) Delete(id uint) error {`
feat: 修改证书账号等删除校验 2022-12-05 15:50:53 +08:00			`if websites, _ := websiteRepo.GetBy(websiteRepo.WithWebsiteSSLID(id)); len(websites) > 0 {`
			`return buserr.New(constant.ErrSSLCannotDelete)`
			`}`
feat: 增加acme账号管理 2022-11-11 17:41:39 +08:00			`return websiteSSLRepo.DeleteBy(commonRepo.WithByID(id))`
			`}`
feat: 证书列表增加设置自动续签功能 (#337) 2023-03-21 14:42:50 +08:00
			`func (w WebsiteSSLService) Update(update request.WebsiteSSLUpdate) error {`
			`websiteSSL, err := websiteSSLRepo.GetFirst(commonRepo.WithByID(update.ID))`
			`if err != nil {`
			`return err`
			`}`
			`websiteSSL.AutoRenew = update.AutoRenew`
			`return websiteSSLRepo.Save(websiteSSL)`
			`}`