Home Explore
Register Sign In
SongZihuan
/
HTTPDemo
mirror of https://github.com/SongZihuan/http-demo.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

更新 newCert 函数以支持目录参数

在 `newCert` 函数中添加了目录参数,以便保存和加载账户信息。同时新增了 `saveAccount` 和 `loadAccount` 函数来处理账户的保存和加载。
SongZihuan 3 months ago
parent
b0e7b30d74
commit
c2addd9c8a
2 changed files with 50 additions and 6 deletions
Unified View Show Diff Stats
  1. 2 2
      src/acme/ctrl.go
  2. 48 4
      src/acme/newcert.go

+ 2 - 2
src/acme/ctrl.go
View File 

@@ -26,7 +26,7 @@ func GetCertificateAndPrivateKey(dir string, email string, httpsAddress string,
 
 		return privateKey, cert, nil
 
 		return privateKey, cert, nil
 
 	}
 
 	}
 
 
 
-	privateKey, resource, err := newCert(email, httpsAddress, domain)
 
+	privateKey, resource, err := newCert(dir, email, httpsAddress, domain)
 
 	if err != nil {
 
 	if err != nil {
 
 		return nil, nil, err
 
 		return nil, nil, err
 
 	}
 
 	}
 
@@ -99,7 +99,7 @@ func watchCertificateAndPrivateKey(dir string, email string, httpsAddress string
 
 		return nil, nil, nil
 
 		return nil, nil, nil
 
 	}
 
 	}
 
 
 
-	privateKey, resource, err := newCert(email, httpsAddress, domain)
 
+	privateKey, resource, err := newCert(dir, email, httpsAddress, domain)
 
 	if err != nil {
 
 	if err != nil {
 
 		return nil, nil, err
 
 		return nil, nil, err
 
 	}
 
 	}

+ 48 - 4
src/acme/newcert.go
View File 

@@ -1,11 +1,13 @@
 
 package acme
 
 package acme
 
 
 
 import (
 
 import (
 
+	"bytes"
 
 	"crypto"
 
 	"crypto"
 
 	"crypto/ecdsa"
 
 	"crypto/ecdsa"
 
 	"crypto/elliptic"
 
 	"crypto/elliptic"
 
 	"crypto/rand"
 
 	"crypto/rand"
 
 	"crypto/x509"
 
 	"crypto/x509"
 
+	"encoding/gob"
 
 	"encoding/pem"
 
 	"encoding/pem"
 
 	"fmt"
 
 	"fmt"
 
 	"github.com/go-acme/lego/v4/certcrypto"
 
 	"github.com/go-acme/lego/v4/certcrypto"
 
@@ -19,7 +21,41 @@ import (
 
 	"time"
 
 	"time"
 
 )
 
 )
 
 
 
-func newCert(email string, httpsAddress string, domain string) (crypto.PrivateKey, *certificate.Resource, error) {
 
+func saveAccount(dir string, email string, reg *registration.Resource) error {
 
+	filepath := path.Join(dir, fmt.Sprintf("%s.account", email))
 
+
 
+	var buff bytes.Buffer
 
+	enc := gob.NewEncoder(&buff)
 
+	err := enc.Encode(reg)
 
+	if err != nil {
 
+		return err
 
+	}
 
+
 
+	return os.WriteFile(filepath, buff.Bytes(), 0644)
 
+}
 
+
 
+func loadAccount(dir string, email string) (*registration.Resource, error) {
 
+	filepath := path.Join(dir, fmt.Sprintf("%s.account", email))
 
+	file, err := os.Open(filepath)
 
+	if err != nil {
 
+		return nil, err
 
+	}
 
+	defer func() {
 
+		_ = file.Close()
 
+	}()
 
+
 
+	var reg registration.Resource
 
+	dec := gob.NewDecoder(file)
 
+
 
+	err = dec.Decode(&reg)
 
+	if err != nil {
 
+		return nil, err
 
+	}
 
+
 
+	return &reg, nil
 
+}
 
+
 
+func newCert(dir string, email string, httpsAddress string, domain string) (crypto.PrivateKey, *certificate.Resource, error) {
 
 	privateKey, err := ecdsa.GenerateKey(elliptic.P384(), rand.Reader)
 
 	privateKey, err := ecdsa.GenerateKey(elliptic.P384(), rand.Reader)
 
 	if err != nil {
 
 	if err != nil {
 
 		return nil, nil, err
 
 		return nil, nil, err
 
@@ -49,11 +85,19 @@ func newCert(email string, httpsAddress string, domain string) (crypto.PrivateKe
 
 		TermsOfServiceAgreed: true,
 
 		TermsOfServiceAgreed: true,
 
 	}
 
 	}
 
 
 
-	reg, err := client.Registration.Register(regOption)
 
+	reg, err := loadAccount(path.Join(dir, "account"), email)
 
 	if err != nil {
 
 	if err != nil {
 
-		return nil, nil, err
 
-	}
 
+		// 尝试注册
 
+		reg, err = client.Registration.Register(regOption)
 
+		if err != nil {
 
+			return nil, nil, err
 
+		}
 
 
 
+		err = saveAccount(dir, email, reg)
 
+		if err != nil {
 
+			return nil, nil, err
 
+		}
 
+	}
 
 	user.setRegistration(reg)
 
 	user.setRegistration(reg)
 
 
 
 	if domain == "" {
 
 	if domain == "" {