Module: Model::AcmeIdentifier

Extended by:

ActiveSupport::Concern

Included in:

Com::AcmeIdentifier

Defined in:

app/models/com/model/acme_identifier.rb

Instance Method Summary

• #authorization ⇒ Object
• #auto_verify ⇒ Object
• #compute_wildcard ⇒ Object
• #deactivate ⇒ Object
• #dns_host ⇒ Object
• #dns_resolv ⇒ Object
• #dns_verify? ⇒ Boolean
• #ensure_dns ⇒ Object

  todo use aliyun temply.

• #file_verify? ⇒ Boolean
• #renew_dns_valid ⇒ Object
• #renew_file_valid ⇒ Object
• #save_auth(auth = authorization) ⇒ Object

Instance Method Details

#authorization ⇒ Object

# File 'app/models/com/model/acme_identifier.rb', line 118

def authorization
  auth = acme_order.order.authorizations.find { |i| domain == i.domain && wildcard.present? == i.wildcard.present? }
rescue Acme::Client::Error::BadNonce
  retry
else
  save_auth(auth)
  auth
end

#auto_verify ⇒ Object

# File 'app/models/com/model/acme_identifier.rb', line 76

def auto_verify
  if file_name.present? && file_content.present?
    file_verify?
  else
    dns_verify?
  end
end

#compute_wildcard ⇒ Object

# File 'app/models/com/model/acme_identifier.rb', line 39

def compute_wildcard
  if identifier.start_with?('*.')
    self.wildcard = true
    self.domain = identifier.delete_prefix('*.')
  else
    self.domain = identifier
  end
end

#deactivate ⇒ Object

# File 'app/models/com/model/acme_identifier.rb', line 127

def deactivate
  acme_order.acme_account.client.deactivate_authorization(url: url)
end

#dns_host ⇒ Object

# File 'app/models/com/model/acme_identifier.rb', line 114

def dns_host
  "#{record_name}.#{domain}"
end

#dns_resolv ⇒ Object

# File 'app/models/com/model/acme_identifier.rb', line 56

def dns_resolv
  Resolv::DNS.open do |dns|
    records = dns.getresources dns_host, Resolv::DNS::Resource::IN::TXT
    records.map!(&:data)
  end
end

#dns_verify? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/com/model/acme_identifier.rb', line 63

def dns_verify?
  unless dns_resolv.include?(record_content)
    ensure_dns
  end

  auth = authorization
  auth.dns.request_validation
  if auth.reload && auth.status == 'valid'
    self.update dns_valid: true, status: 'valid'
  end
  dns_valid
end

#ensure_dns ⇒ Object

todo use aliyun temply

# File 'app/models/com/model/acme_identifier.rb', line 49

def ensure_dns
  r = AliDns.add_acme_record domain, record_content
  if r['RecordId']
    AliDns.check_record(domain, record_content)
  end
end

#file_verify? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/models/com/model/acme_identifier.rb', line 84

def file_verify?
  file_path = Rails.root.join('public', file_name)

  unless file_path.file? && file_path.read == file_content
    file_path.dirname.exist? || file_path.dirname.mkpath
    File.open(file_path, 'w') do |f|
      f.write file_content
    end
  end

  auth = authorization
  auth.http.request_validation
  if auth.reload && auth.status == 'valid'
    self.update file_valid: true, status: 'valid'
  end

  file_valid
end

#renew_dns_valid ⇒ Object

# File 'app/models/com/model/acme_identifier.rb', line 31

def renew_dns_valid
  self.dns_valid = false
end

#renew_file_valid ⇒ Object

# File 'app/models/com/model/acme_identifier.rb', line 35

def renew_file_valid
  self.file_valid = false
end

#save_auth(auth = authorization) ⇒ Object

# File 'app/models/com/model/acme_identifier.rb', line 103

def save_auth(auth = authorization)
  update(
    record_name: auth.dns&.record_name,
    record_content: auth.dns&.record_content,
    file_name: auth.http&.filename,
    file_content: auth.http&.file_content,
    url: auth.url,
    status: auth.status
  )
end