DNS Credentials are saved in Database

2025-06-03 06:07:20 +02:00 · 2024-05-02 22:52:51 +02:00 · 2024-05-02 22:52:51 +02:00 · 8854a38f49
commit 8854a38f49
parent 7583a4628c
4 changed files with 140 additions and 18 deletions
--- a/src/api.go
+++ b/src/api.go
@ -187,6 +187,7 @@ func initAPIs() {
 	authRouter.HandleFunc("/api/acme/autoRenew/email", acmeAutoRenewer.HandleACMEEmail)
 	authRouter.HandleFunc("/api/acme/autoRenew/setDomains", acmeAutoRenewer.HandleSetAutoRenewDomains)
 	authRouter.HandleFunc("/api/acme/autoRenew/setEAB", acmeAutoRenewer.HanldeSetEAB)
+	authRouter.HandleFunc("/api/acme/autoRenew/setDNS", acmeAutoRenewer.HanldeSetDNS)
 	authRouter.HandleFunc("/api/acme/autoRenew/listDomains", acmeAutoRenewer.HandleLoadAutoRenewDomains)
 	authRouter.HandleFunc("/api/acme/autoRenew/renewPolicy", acmeAutoRenewer.HandleRenewPolicy)
 	authRouter.HandleFunc("/api/acme/autoRenew/renewNow", acmeAutoRenewer.HandleRenewNow)
--- a/src/mod/acme/acme.go
+++ b/src/mod/acme/acme.go
@ -148,8 +148,25 @@ func (a *ACMEHandler) ObtainCert(domains []string, certificateName string, email

 	// setup how to receive challenge
 	if dns {
+		if !a.Database.TableExists("acme") {
+			a.Database.NewTable("acme")
+			return false, errors.New("DNS Provider and DNS Credenital configuration required for ACME Provider (Error -1)")
+		}
+
+		if !a.Database.KeyExists("acme", certificateName+"_dns_provider") || !a.Database.KeyExists("acme", certificateName+"_dns_credentials") {
+			return false, errors.New("DNS Provider and DNS Credenital configuration required for ACME Provider (Error -2)")
+		}
+
+		var dnsCredentials string
+		err := a.Database.Read("acme", certificateName+"_dns_credentials", &dnsCredentials)
+
+		if err != nil {
+			log.Println(err)
+			return false, err
+		}
+
 		dynuConfig := dynu.NewDefaultConfig()
-		dynuConfig.APIKey = "yourApiKey"
+		dynuConfig.APIKey = dnsCredentials

 		provider, err := dynu.NewDNSProviderConfig(dynuConfig)
 		if err != nil {
--- a/src/mod/acme/autorenew.go
+++ b/src/mod/acme/autorenew.go
@ -404,3 +404,35 @@ func (a *AutoRenewer) HanldeSetEAB(w http.ResponseWriter, r *http.Request) {
 	utils.SendOK(w)

 }
+
+
+// Handle update auto renew DNS configuration
+func (a *AutoRenewer) HanldeSetDNS(w http.ResponseWriter, r *http.Request) {
+	dnsProvider, err := utils.PostPara(r, "dnsProvider")
+	if err != nil {
+		utils.SendErrorResponse(w, "dnsProvider not set")
+		return
+	}
+
+	dnsCredentials, err := utils.PostPara(r, "dnsCredentials")
+	if err != nil {
+		utils.SendErrorResponse(w, "dnsCredentials not set")
+		return
+	}
+
+	filename, err := utils.PostPara(r, "filename")
+	if err != nil {
+		utils.SendErrorResponse(w, "filename not set")
+		return
+	}
+
+	if !a.AcmeHandler.Database.TableExists("acme") {
+		a.AcmeHandler.Database.NewTable("acme")
+	}
+
+	a.AcmeHandler.Database.Write("acme", filename+"_dns_provider", dnsProvider)
+	a.AcmeHandler.Database.Write("acme", filename+"_dns_credentials", dnsCredentials)
+
+	utils.SendOK(w)
+
+}
--- a/src/web/snippet/acme.html
+++ b/src/web/snippet/acme.html
@ -346,6 +346,7 @@
    $("#obtainButton").click(function() {
      $("#obtainButton").addClass("loading").addClass("disabled");
      updateCertificateEAB();
+      updateCertificateDNS();
      obtainCertificate();
    });

@ -373,8 +374,31 @@
      }
    })

+    // Get filename form domains and input
+    function getFilename() {
+      var domains = $("#domainsInput").val();
+      var filename = $("#filenameInput").val();
+      if (filename.trim() == "" && !domains.includes(",")){
+        //Zoraxy filename are the matching name for domains.
+        //Use the same as domains
+        filename = domains;
+      }else if (filename != "" && !domains.includes(",")){
+        //Invalid settings. Force the filename to be same as domain
+        //if there are only 1 domain
+        filename = domains;
+      }else if (filename == "" && domains.includes(",")){
+        parent.msgbox("Filename cannot be empty for certs containing multiple domains.", false, 5000);
+        $("#obtainButton").removeClass("loading").removeClass("disabled");
+        return;
+      }

-    // Obtain certificate from API
+      //Filename cannot contain wildcards, and wildcards are possible with DNS challenges
+      filename = filename.replace("*", "_");
+      return filename;
+    }
+      
+
+    // Update EAB values for autorenewal
    function updateCertificateEAB() {
      var ca = $("#ca").dropdown("get value");
      var caURL = "";
@ -431,29 +455,79 @@
      });
    }

+    // Update DNS values for autorenewal
+    function updateCertificateDNS() {
+      var dns = $("#useDnsChallenge")[0].checked;
+      var dnsProvider = "";
+      var dnsCredentials = "";
+
+      if (dns) {
+        dnsProvider = $("#dnsProvider").dropdown("get value");
+        dnsCredentials = $("#dnsCredentials").val();
+
+        if(dnsProvider == "") {
+          parent.msgbox("DNS Provider cannot be empty", false, 5000);
+          $("#obtainButton").removeClass("loading").removeClass("disabled");
+          return;
+        }
+
+        
+        if(dnsCredentials == "") {
+          parent.msgbox("DNS Credentials cannot be empty", false, 5000);
+          $("#obtainButton").removeClass("loading").removeClass("disabled");
+          return;
+        }
+      } else {
+        return;
+      }
+
+      var filename = getFilename();
+      if (filename == '') {
+        return;
+      }
+
+      $.ajax({
+        url: "/api/acme/autoRenew/setDNS",
+        method: "POST",
+        data: {
+          filename: filename,
+          dnsProvider: dnsProvider,
+          dnsCredentials: dnsCredentials,
+        },
+        success: function(response) {
+          //$("#obtainButton").removeClass("loading").removeClass("disabled");
+          if (response.error) {
+            console.log("Error:", response.error);
+            // Show error message
+            parent.msgbox(response.error, false, 12000);
+          } else {
+            console.log("Certificate DNS updated successfully");
+            // Show success message
+            parent.msgbox("Certificate DNS updated successfully");
+          }
+        },
+        error: function(error) {
+          //$("#obtainButton").removeClass("loading").removeClass("disabled");
+          console.log("Failed to update DNS configuration:", error);
+          parent.msgbox("Failed to update DNS configuration");
+        }
+      });
+    }
+
    // Obtain certificate from API
    function obtainCertificate() {
      var domains = $("#domainsInput").val();
-      var filename = $("#filenameInput").val();
+      var filename = getFilename();
+      if (filename == '') {
+        return;
+      }
      var email = $("#caRegisterEmail").val();
      if (email == ""){
        parent.msgbox("ACME renew email is not set", false)
        $("#obtainButton").removeClass("loading").removeClass("disabled");
        return;
      }
-      if (filename.trim() == "" && !domains.includes(",")){
-        //Zoraxy filename are the matching name for domains.
-        //Use the same as domains
-        filename = domains;
-      }else if (filename != "" && !domains.includes(",")){
-        //Invalid settings. Force the filename to be same as domain
-        //if there are only 1 domain
-        filename = domains;
-      }else if (filename == "" && domains.includes(",")){
-        parent.msgbox("Filename cannot be empty for certs containing multiple domains.", false, 5000);
-        $("#obtainButton").removeClass("loading").removeClass("disabled");
-        return;
-      }
+    
      
      var ca = $("#ca").dropdown("get value");
      var caURL = "";
@ -467,8 +541,6 @@
      var dnsProvider = "";
      var dnsCredentials = "";
      if (dns) {
-        //Filename cannot contain wildcards, and wildcards are possible with DNS challenges
-        filename = filename.replace("*", "_");
        dnsProvider = $("#dnsProvider").dropdown("get value");
        dnsCredentials = $("#dnsCredentials").val();
      }