Baked acme.sh into binary and use it when required, removed docker healthcheck

2025-08-28 11:40:04 +00:00 · 2021-07-15 15:00:28 +10:00
parent 4d3dfdfa8a
commit 17a5454b7a
8 changed files with 86 additions and 6 deletions
--- a/backend/cmd/server/main.go
+++ b/backend/cmd/server/main.go
@@ -5,6 +5,7 @@ import (
 	"os/signal"
 	"syscall"

+	"npm/internal/acme"
 	"npm/internal/api"
 	"npm/internal/config"
 	"npm/internal/database"
@@ -26,6 +27,7 @@ func main() {
 		setting.ApplySettings()
 		database.CheckSetup()
 		go worker.StartCertificateWorker(appstate)
+		acme.WriteAcmeSh()

 		api.StartServer()
 		irqchan := make(chan os.Signal, 1)
--- a/backend/embed/acme.sh
+++ b/backend/embed/acme.sh
@@ -1,6 +1,10 @@
 #!/usr/bin/bash

+VER=0.0.0
+
+echo "Given Args: ${*}"
+echo
 echo "This is a placeholder for the official acme.sh script"
-echo "that will be embedded into the binary. If you are seeing"
-echo "this message then something is not quite right."
+echo "that will be embedded into the binary."
+echo "If you are seeing this message then something is not quite right!"
 exit 1
--- a/backend/embed/main.go
+++ b/backend/embed/main.go
@@ -16,4 +16,4 @@ var MigrationFiles embed.FS

 // AcmeSh script
 //go:embed acme.sh
-var AcmeSh embed.FS
+var AcmeSh string
--- a/backend/internal/acme/acmesh.go
+++ b/backend/internal/acme/acmesh.go
@@ -0,0 +1,63 @@
+package acme
+
+import (
+	"fmt"
+	"io/ioutil"
+	"os"
+	"os/exec"
+	"path/filepath"
+	"strings"
+
+	"npm/embed"
+	"npm/internal/config"
+	"npm/internal/logger"
+)
+
+var acmeShFile string
+
+// GetAcmeShVersion will return the acme.sh script version
+func GetAcmeShVersion() string {
+	if r, err := acmeShExec("--version"); err == nil {
+		// modify the output
+		r = strings.Trim(r, "\n")
+		v := strings.Split(r, "\n")
+		return v[len(v)-1]
+	}
+	return ""
+}
+
+func acmeShExec(args ...string) (string, error) {
+	if _, err := os.Stat(acmeShFile); os.IsNotExist(err) {
+		e := fmt.Errorf("%s does not exist", acmeShFile)
+		logger.Error("AcmeShError", e)
+		return "", e
+	}
+
+	// nolint: gosec
+	c := exec.Command(acmeShFile, args...)
+	b, e := c.Output()
+
+	if e != nil {
+		logger.Error("AcmeShError", fmt.Errorf("Command error: %s -- %v\n%+v", acmeShFile, args, e))
+		logger.Warn(string(b))
+	}
+
+	return string(b), e
+}
+
+// WriteAcmeSh this will write our embedded acme.sh script to the data directory
+// and give it write permissions
+func WriteAcmeSh() {
+	if config.Configuration.DataFolder == "" {
+		logger.Error("AcmeShWriteError", fmt.Errorf("Configuration folder location is not set"))
+		return
+	}
+
+	acmeShFile = filepath.Clean(fmt.Sprintf("%s/acme.sh", config.Configuration.DataFolder))
+	// nolint: gosec
+	if err := ioutil.WriteFile(acmeShFile, []byte(embed.AcmeSh), 0755); err != nil {
+		logger.Error("AcmeShWriteError", err)
+	} else {
+		logger.Info("Wrote %s", acmeShFile)
+	}
+}
--- a/backend/internal/api/handler/health.go
+++ b/backend/internal/api/handler/health.go
@@ -2,6 +2,7 @@ package handler

 import (
 	"net/http"
+	"npm/internal/acme"
 	h "npm/internal/api/http"
 	"npm/internal/config"
 )
@@ -9,6 +10,7 @@ import (
 type healthCheckResponse struct {
 	Version        string `json:"version"`
 	Commit         string `json:"commit"`
+	AcmeShVersion  string `json:"acme.sh"`
 	Healthy        bool   `json:"healthy"`
 	IsSetup        bool   `json:"setup"`
 	ErrorReporting bool   `json:"error_reporting"`
@@ -23,6 +25,7 @@ func Health() func(http.ResponseWriter, *http.Request) {
 			Commit:         config.Commit,
 			Healthy:        true,
 			IsSetup:        config.IsSetup,
+			AcmeShVersion:  acme.GetAcmeShVersion(),
 			ErrorReporting: config.ErrorReporting,
 		}