mirror of
https://github.com/NginxProxyManager/nginx-proxy-manager.git
synced 2025-09-14 19:02:35 +00:00
304 lines
6.5 KiB
JavaScript
304 lines
6.5 KiB
JavaScript
import express from "express";
|
|
import internalCertificate from "../../internal/certificate.js";
|
|
import errs from "../../lib/error.js";
|
|
import jwtdecode from "../../lib/express/jwt-decode.js";
|
|
import apiValidator from "../../lib/validator/api.js";
|
|
import validator from "../../lib/validator/index.js";
|
|
import { express as logger } from "../../logger.js";
|
|
import { getValidationSchema } from "../../schema/index.js";
|
|
|
|
const router = express.Router({
|
|
caseSensitive: true,
|
|
strict: true,
|
|
mergeParams: true,
|
|
});
|
|
|
|
/**
|
|
* /api/nginx/certificates
|
|
*/
|
|
router
|
|
.route("/")
|
|
.options((_, res) => {
|
|
res.sendStatus(204);
|
|
})
|
|
.all(jwtdecode())
|
|
|
|
/**
|
|
* GET /api/nginx/certificates
|
|
*
|
|
* Retrieve all certificates
|
|
*/
|
|
.get(async (req, res, next) => {
|
|
try {
|
|
const data = await validator(
|
|
{
|
|
additionalProperties: false,
|
|
properties: {
|
|
expand: {
|
|
$ref: "common#/properties/expand",
|
|
},
|
|
query: {
|
|
$ref: "common#/properties/query",
|
|
},
|
|
},
|
|
},
|
|
{
|
|
expand: typeof req.query.expand === "string" ? req.query.expand.split(",") : null,
|
|
query: typeof req.query.query === "string" ? req.query.query : null,
|
|
},
|
|
);
|
|
const rows = await internalCertificate.getAll(res.locals.access, data.expand, data.query);
|
|
res.status(200).send(rows);
|
|
} catch (err) {
|
|
logger.debug(`${req.method.toUpperCase()} ${req.path}: ${err}`);
|
|
next(err);
|
|
}
|
|
})
|
|
|
|
/**
|
|
* POST /api/nginx/certificates
|
|
*
|
|
* Create a new certificate
|
|
*/
|
|
.post(async (req, res, next) => {
|
|
try {
|
|
const payload = await apiValidator(getValidationSchema("/nginx/certificates", "post"), req.body);
|
|
req.setTimeout(900000); // 15 minutes timeout
|
|
const result = await internalCertificate.create(res.locals.access, payload);
|
|
res.status(201).send(result);
|
|
} catch (err) {
|
|
logger.debug(`${req.method.toUpperCase()} ${req.path}: ${err}`);
|
|
next(err);
|
|
}
|
|
});
|
|
|
|
/**
|
|
* Test HTTP challenge for domains
|
|
*
|
|
* /api/nginx/certificates/test-http
|
|
*/
|
|
router
|
|
.route("/test-http")
|
|
.options((_, res) => {
|
|
res.sendStatus(204);
|
|
})
|
|
.all(jwtdecode())
|
|
|
|
/**
|
|
* GET /api/nginx/certificates/test-http
|
|
*
|
|
* Test HTTP challenge for domains
|
|
*/
|
|
.get(async (req, res, next) => {
|
|
if (req.query.domains === undefined) {
|
|
next(new errs.ValidationError("Domains are required as query parameters"));
|
|
return;
|
|
}
|
|
|
|
try {
|
|
const result = await internalCertificate.testHttpsChallenge(
|
|
res.locals.access,
|
|
JSON.parse(req.query.domains),
|
|
);
|
|
res.status(200).send(result);
|
|
} catch (err) {
|
|
logger.debug(`${req.method.toUpperCase()} ${req.path}: ${err}`);
|
|
next(err);
|
|
}
|
|
});
|
|
|
|
/**
|
|
* Specific certificate
|
|
*
|
|
* /api/nginx/certificates/123
|
|
*/
|
|
router
|
|
.route("/:certificate_id")
|
|
.options((_, res) => {
|
|
res.sendStatus(204);
|
|
})
|
|
.all(jwtdecode())
|
|
|
|
/**
|
|
* GET /api/nginx/certificates/123
|
|
*
|
|
* Retrieve a specific certificate
|
|
*/
|
|
.get(async (req, res, next) => {
|
|
try {
|
|
const data = await validator(
|
|
{
|
|
required: ["certificate_id"],
|
|
additionalProperties: false,
|
|
properties: {
|
|
certificate_id: {
|
|
$ref: "common#/properties/id",
|
|
},
|
|
expand: {
|
|
$ref: "common#/properties/expand",
|
|
},
|
|
},
|
|
},
|
|
{
|
|
certificate_id: req.params.certificate_id,
|
|
expand: typeof req.query.expand === "string" ? req.query.expand.split(",") : null,
|
|
},
|
|
);
|
|
const row = await internalCertificate.get(res.locals.access, {
|
|
id: Number.parseInt(data.certificate_id, 10),
|
|
expand: data.expand,
|
|
});
|
|
res.status(200).send(row);
|
|
} catch (err) {
|
|
logger.debug(`${req.method.toUpperCase()} ${req.path}: ${err}`);
|
|
next(err);
|
|
}
|
|
})
|
|
|
|
/**
|
|
* DELETE /api/nginx/certificates/123
|
|
*
|
|
* Update and existing certificate
|
|
*/
|
|
.delete(async (req, res, next) => {
|
|
try {
|
|
const result = await internalCertificate.delete(res.locals.access, {
|
|
id: Number.parseInt(req.params.certificate_id, 10),
|
|
});
|
|
res.status(200).send(result);
|
|
} catch (err) {
|
|
logger.debug(`${req.method.toUpperCase()} ${req.path}: ${err}`);
|
|
next(err);
|
|
}
|
|
});
|
|
|
|
/**
|
|
* Upload Certs
|
|
*
|
|
* /api/nginx/certificates/123/upload
|
|
*/
|
|
router
|
|
.route("/:certificate_id/upload")
|
|
.options((_, res) => {
|
|
res.sendStatus(204);
|
|
})
|
|
.all(jwtdecode())
|
|
|
|
/**
|
|
* POST /api/nginx/certificates/123/upload
|
|
*
|
|
* Upload certificates
|
|
*/
|
|
.post(async (req, res, next) => {
|
|
if (!req.files) {
|
|
res.status(400).send({ error: "No files were uploaded" });
|
|
return;
|
|
}
|
|
|
|
try {
|
|
const result = await internalCertificate.upload(res.locals.access, {
|
|
id: Number.parseInt(req.params.certificate_id, 10),
|
|
files: req.files,
|
|
});
|
|
res.status(200).send(result);
|
|
} catch (err) {
|
|
logger.debug(`${req.method.toUpperCase()} ${req.path}: ${err}`);
|
|
next(err);
|
|
}
|
|
});
|
|
|
|
/**
|
|
* Renew LE Certs
|
|
*
|
|
* /api/nginx/certificates/123/renew
|
|
*/
|
|
router
|
|
.route("/:certificate_id/renew")
|
|
.options((_, res) => {
|
|
res.sendStatus(204);
|
|
})
|
|
.all(jwtdecode())
|
|
|
|
/**
|
|
* POST /api/nginx/certificates/123/renew
|
|
*
|
|
* Renew certificate
|
|
*/
|
|
.post(async (req, res, next) => {
|
|
req.setTimeout(900000); // 15 minutes timeout
|
|
try {
|
|
const result = await internalCertificate.renew(res.locals.access, {
|
|
id: Number.parseInt(req.params.certificate_id, 10),
|
|
});
|
|
res.status(200).send(result);
|
|
} catch (err) {
|
|
logger.debug(`${req.method.toUpperCase()} ${req.path}: ${err}`);
|
|
next(err);
|
|
}
|
|
});
|
|
|
|
/**
|
|
* Download LE Certs
|
|
*
|
|
* /api/nginx/certificates/123/download
|
|
*/
|
|
router
|
|
.route("/:certificate_id/download")
|
|
.options((_req, res) => {
|
|
res.sendStatus(204);
|
|
})
|
|
.all(jwtdecode())
|
|
|
|
/**
|
|
* GET /api/nginx/certificates/123/download
|
|
*
|
|
* Renew certificate
|
|
*/
|
|
.get(async (req, res, next) => {
|
|
try {
|
|
const result = await internalCertificate.download(res.locals.access, {
|
|
id: Number.parseInt(req.params.certificate_id, 10),
|
|
});
|
|
res.status(200).download(result.fileName);
|
|
} catch (err) {
|
|
logger.debug(`${req.method.toUpperCase()} ${req.path}: ${err}`);
|
|
next(err);
|
|
}
|
|
});
|
|
|
|
/**
|
|
* Validate Certs before saving
|
|
*
|
|
* /api/nginx/certificates/validate
|
|
*/
|
|
router
|
|
.route("/validate")
|
|
.options((_, res) => {
|
|
res.sendStatus(204);
|
|
})
|
|
.all(jwtdecode())
|
|
|
|
/**
|
|
* POST /api/nginx/certificates/validate
|
|
*
|
|
* Validate certificates
|
|
*/
|
|
.post(async (req, res, next) => {
|
|
if (!req.files) {
|
|
res.status(400).send({ error: "No files were uploaded" });
|
|
return;
|
|
}
|
|
|
|
try {
|
|
const result = await internalCertificate.validate({
|
|
files: req.files,
|
|
});
|
|
res.status(200).send(result);
|
|
} catch (err) {
|
|
logger.debug(`${req.method.toUpperCase()} ${req.path}: ${err}`);
|
|
next(err);
|
|
}
|
|
});
|
|
|
|
export default router;
|