Главная Обзор Помощь
Вход
AI-Agent
/
Auto-ssl
2
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Просмотр исходного кода

feat: AutoSSL certificate management tool with Web UI

cnbugs 1 неделя назад
Сommit
1775d4b4fc
28 измененных файлов с 2355 добавлено и 0 удалено
Разделённый вид Показать статистику Diff
  1. 26 0
      Dockerfile
  2. 64 0
      README.md
  3. 33 0
      backend/config/certificate.go
  4. 69 0
      backend/config/config.go
  5. 57 0
      backend/go.mod
  6. 176 0
      backend/go.sum
  7. 293 0
      backend/handlers/cert.go
  8. 103 0
      backend/main.go
  9. 323 0
      backend/services/acme.go
  10. 13 0
      docker-compose.yml
  11. 24 0
      frontend/.gitignore
  12. 5 0
      frontend/README.md
  13. 13 0
      frontend/index.html
  14. 0 0
      frontend/public/favicon.svg
  15. 24 0
      frontend/public/icons.svg
  16. 97 0
      frontend/src/App.vue
  17. 55 0
      frontend/src/api/index.ts
  18. BIN
      frontend/src/assets/hero.png
  19. 0 0
      frontend/src/assets/vite.svg
  20. 1 0
      frontend/src/assets/vue.svg
  21. 95 0
      frontend/src/components/HelloWorld.vue
  22. 18 0
      frontend/src/main.ts
  23. 15 0
      frontend/src/router/index.ts
  24. 296 0
      frontend/src/style.css
  25. 167 0
      frontend/src/views/CertCreate.vue
  26. 220 0
      frontend/src/views/CertList.vue
  27. 161 0
      frontend/src/views/Dashboard.vue
  28. 7 0
      frontend/vite.config.ts

+ 26 - 0
Dockerfile
Просмотреть файл 

@@ -0,0 +1,26 @@
 
+# AutoSSL Backend
 
+FROM golang:1.23-alpine AS backend-builder
 
+WORKDIR /build
 
+COPY backend/go.mod backend/go.sum ./
 
+RUN go mod download
 
+COPY backend/ .
 
+RUN CGO_ENABLED=1 GOOS=linux go build -o /build/autossl .
 
+
 
+# Frontend
 
+FROM node:23-alpine AS frontend-builder
 
+WORKDIR /build
 
+COPY frontend/package.json frontend/package-lock.json ./
 
+RUN npm ci
 
+COPY frontend/ .
 
+RUN npm run build
 
+
 
+# Final image
 
+FROM alpine:3.20
 
+RUN apk add --no-cache ca-certificates tzdata
 
+WORKDIR /app
 
+COPY --from=backend-builder /build/autossl .
 
+COPY --from=frontend-builder /build/dist ./dist
 
+VOLUME ["/app/data"]
 
+EXPOSE 8080 80
 
+ENV TZ=Asia/Shanghai
 
+CMD ["./autossl"]

+ 64 - 0
README.md
Просмотреть файл 

@@ -0,0 +1,64 @@
 
+# AutoSSL - 自动 SSL 证书管理工具
 
+
 
+基于 Go 开发的 ACME 自动 SSL 证书申请与管理工具,提供 Web 管理界面。
 
+
 
+## 功能
 
+
 
+- ✅ 自动申请 SSL 证书(Let's Encrypt / ZeroSSL)
 
+- ✅ 自动续期(每天凌晨 3 点自动检查并续期)
 
+- ✅ HTTP-01(端口 80)和 DNS-01 验证方式
 
+- ✅ 支持阿里云 DNS / Cloudflare / DNSPod
 
+- ✅ Web 管理界面(仪表盘、证书列表、申请、查看、续期、删除)
 
+- ✅ SQLite 数据存储
 
+- ✅ Docker 一键部署
 
+
 
+## 快速开始
 
+
 
+### Docker 部署
 
+
 
+```bash
 
+git clone <your-repo-url> autossl
 
+cd autossl
 
+docker compose up -d
 
+```
 
+
 
+访问 http://localhost:8080
 
+
 
+### 直接运行
 
+
 
+```bash
 
+# 编译
 
+cd backend && go build -o autossl .
 
+# 运行(默认端口 8080)
 
+./autossl
 
+```
 
+
 
+## 环境变量
 
+
 
+| 变量 | 默认值 | 说明 |
 
+|------|--------|------|
 
+| PORT | 8080 | Web 服务端口 |
 
+| DB_PATH | ./data/autossl.db | SQLite 数据库路径 |
 
+| CERT_DIR | ./data/certs | 证书文件存储目录 |
 
+| ACCOUNTS_DIR | ./data/accounts | ACME 账号存储目录 |
 
+
 
+## API 接口
 
+
 
+| 方法 | 路径 | 说明 |
 
+|------|------|------|
 
+| GET | /api/stats | 统计信息 |
 
+| GET | /api/certificates | 证书列表 |
 
+| GET | /api/certificates/:id | 证书详情 |
 
+| POST | /api/certificates | 申请证书 |
 
+| PUT | /api/certificates/:id | 更新证书配置 |
 
+| DELETE | /api/certificates/:id | 删除证书 |
 
+| POST | /api/certificates/:id/renew | 手动续期 |
 
+| GET | /api/certificates/:id/files | 查看证书文件 |
 
+| GET | /api/renewals/check | 触发续期检查 |
 
+
 
+## 证书文件位置
 
+
 
+申请成功后的证书文件存储在 `./data/certs/<domain>/` 目录:
 
+- `fullchain.pem` - 完整证书链
 
+- `privkey.pem` - 私钥
 
+- `chain.pem` - CA 证书链

+ 33 - 0
backend/config/certificate.go
Просмотреть файл 

@@ -0,0 +1,33 @@
 
+package config
 
+
 
+import (
 
+	"time"
 
+	"gorm.io/gorm"
 
+)
 
+
 
+type Certificate struct {
 
+	ID            uint           `gorm:"primarykey" json:"id"`
 
+	CreatedAt     time.Time      `json:"created_at"`
 
+	UpdatedAt     time.Time      `json:"updated_at"`
 
+	DeletedAt     gorm.DeletedAt `gorm:"index" json:"deleted_at,omitempty"`
 
+
 
+	Domain        string `json:"domain" gorm:"uniqueIndex;size:255"`
 
+	Email         string `json:"email" gorm:"size:255"`
 
+	Provider      string `json:"provider" gorm:"size:50;default:letsencrypt"` // letsencrypt, zerossl
 
+	ChallengeType string `json:"challenge_type" gorm:"size:20;default:http"`  // http, dns
 
+	DNSProvider   string `json:"dns_provider,omitempty" gorm:"size:50"`       // alidns, cloudflare, etc.
 
+	DNSConfig     string `json:"dns_config,omitempty" gorm:"type:text"`       // JSON config for DNS provider
 
+
 
+	Status        string `json:"status" gorm:"size:20;default:pending"` // pending, active, expired, error
 
+	CertURL       string `json:"cert_url,omitempty" gorm:"size:512"`
 
+	ExpiresAt     *time.Time `json:"expires_at,omitempty"`
 
+	LastRenewedAt *time.Time `json:"last_renewed_at,omitempty"`
 
+	ErrorMessage  string `json:"error_message,omitempty" gorm:"type:text"`
 
+
 
+	// Auto renew settings
 
+	AutoRenew     bool   `json:"auto_renew" gorm:"default:true"`
 
+	RenewDays     int    `json:"renew_days" gorm:"default:30"` // Renew when expires within this many days
 
+
 
+	// ACME account key
 
+	AccountKeyID  uint   `json:"account_key_id,omitempty"`
 
+}

+ 69 - 0
backend/config/config.go
Просмотреть файл 

@@ -0,0 +1,69 @@
 
+package config
 
+
 
+import (
 
+	"gorm.io/driver/sqlite"
 
+	"gorm.io/gorm"
 
+	"gorm.io/gorm/logger"
 
+	"log"
 
+	"os"
 
+)
 
+
 
+var DB *gorm.DB
 
+
 
+type Config struct {
 
+	Port        string
 
+	DBPath      string
 
+	CertDir     string
 
+	AccountsDir string
 
+}
 
+
 
+func Load() *Config {
 
+	port := os.Getenv("PORT")
 
+	if port == "" {
 
+		port = "8080"
 
+	}
 
+	dbPath := os.Getenv("DB_PATH")
 
+	if dbPath == "" {
 
+		dbPath = "./data/autossl.db"
 
+	}
 
+	certDir := os.Getenv("CERT_DIR")
 
+	if certDir == "" {
 
+		certDir = "./data/certs"
 
+	}
 
+	accountsDir := os.Getenv("ACCOUNTS_DIR")
 
+	if accountsDir == "" {
 
+		accountsDir = "./data/accounts"
 
+	}
 
+
 
+	return &Config{
 
+		Port:        port,
 
+		DBPath:      dbPath,
 
+		CertDir:     certDir,
 
+		AccountsDir: accountsDir,
 
+	}
 
+}
 
+
 
+func InitDB(cfg *Config) {
 
+	// Ensure data directories exist
 
+	dirs := []string{"./data", cfg.CertDir, cfg.AccountsDir}
 
+	for _, d := range dirs {
 
+		if err := os.MkdirAll(d, 0700); err != nil {
 
+			log.Fatalf("Failed to create directory %s: %v", d, err)
 
+		}
 
+	}
 
+
 
+	var err error
 
+	DB, err = gorm.Open(sqlite.Open(cfg.DBPath), &gorm.Config{
 
+		Logger: logger.Default.LogMode(logger.Warn),
 
+	})
 
+	if err != nil {
 
+		log.Fatalf("Failed to connect database: %v", err)
 
+	}
 
+
 
+	// Auto migrate
 
+	if err := DB.AutoMigrate(&Certificate{}); err != nil {
 
+		log.Fatalf("Failed to migrate database: %v", err)
 
+	}
 
+
 
+	log.Println("Database initialized successfully")
 
+}

+ 57 - 0
backend/go.mod
Просмотреть файл 

@@ -0,0 +1,57 @@
 
+module auto-ssl
 
+
 
+go 1.21
 
+
 
+require (
 
+	github.com/gin-contrib/cors v1.5.0
 
+	github.com/gin-gonic/gin v1.9.1
 
+	github.com/go-acme/lego/v4 v4.14.2
 
+	github.com/robfig/cron/v3 v3.0.1
 
+	gorm.io/driver/sqlite v1.5.4
 
+	gorm.io/gorm v1.25.5
 
+)
 
+
 
+require (
 
+	github.com/aliyun/alibaba-cloud-sdk-go v1.61.1755 // indirect
 
+	github.com/bytedance/sonic v1.10.1 // indirect
 
+	github.com/cenkalti/backoff/v4 v4.2.1 // indirect
 
+	github.com/chenzhuoyu/base64x v0.0.0-20230717121745-296ad89f973d // indirect
 
+	github.com/chenzhuoyu/iasm v0.9.0 // indirect
 
+	github.com/cloudflare/cloudflare-go v0.70.0 // indirect
 
+	github.com/gabriel-vasile/mimetype v1.4.2 // indirect
 
+	github.com/gin-contrib/sse v0.1.0 // indirect
 
+	github.com/go-jose/go-jose/v3 v3.0.0 // indirect
 
+	github.com/go-playground/locales v0.14.1 // indirect
 
+	github.com/go-playground/universal-translator v0.18.1 // indirect
 
+	github.com/go-playground/validator/v10 v10.15.5 // indirect
 
+	github.com/goccy/go-json v0.10.2 // indirect
 
+	github.com/google/go-querystring v1.1.0 // indirect
 
+	github.com/hashicorp/go-cleanhttp v0.5.2 // indirect
 
+	github.com/hashicorp/go-retryablehttp v0.7.4 // indirect
 
+	github.com/jinzhu/inflection v1.0.0 // indirect
 
+	github.com/jinzhu/now v1.1.5 // indirect
 
+	github.com/jmespath/go-jmespath v0.4.0 // indirect
 
+	github.com/json-iterator/go v1.1.12 // indirect
 
+	github.com/klauspost/cpuid/v2 v2.2.5 // indirect
 
+	github.com/leodido/go-urn v1.2.4 // indirect
 
+	github.com/mattn/go-isatty v0.0.19 // indirect
 
+	github.com/mattn/go-sqlite3 v1.14.17 // indirect
 
+	github.com/miekg/dns v1.1.55 // indirect
 
+	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 
+	github.com/modern-go/reflect2 v1.0.2 // indirect
 
+	github.com/nrdcg/dnspod-go v0.4.0 // indirect
 
+	github.com/pelletier/go-toml/v2 v2.1.0 // indirect
 
+	github.com/twitchyliquid64/golang-asm v0.15.1 // indirect
 
+	github.com/ugorji/go/codec v1.2.11 // indirect
 
+	golang.org/x/arch v0.5.0 // indirect
 
+	golang.org/x/crypto v0.14.0 // indirect
 
+	golang.org/x/mod v0.11.0 // indirect
 
+	golang.org/x/net v0.16.0 // indirect
 
+	golang.org/x/sys v0.13.0 // indirect
 
+	golang.org/x/text v0.13.0 // indirect
 
+	golang.org/x/time v0.3.0 // indirect
 
+	golang.org/x/tools v0.10.0 // indirect
 
+	google.golang.org/protobuf v1.31.0 // indirect
 
+	gopkg.in/ini.v1 v1.67.0 // indirect
 
+	gopkg.in/yaml.v3 v3.0.1 // indirect
 
+)

+ 176 - 0
backend/go.sum
Просмотреть файл 

@@ -0,0 +1,176 @@
 
+github.com/aliyun/alibaba-cloud-sdk-go v1.61.1755 h1:J45/QHgrzUdqe/Vco/Vxk0wRvdS2nKUxmf/zLgvfass=
 
+github.com/aliyun/alibaba-cloud-sdk-go v1.61.1755/go.mod h1:RcDobYh8k5VP6TNybz9m++gL3ijVI5wueVr0EM10VsU=
 
+github.com/bytedance/sonic v1.5.0/go.mod h1:ED5hyg4y6t3/9Ku1R6dU/4KyJ48DZ4jPhfY1O2AihPM=
 
+github.com/bytedance/sonic v1.10.0-rc/go.mod h1:ElCzW+ufi8qKqNW0FY314xriJhyJhuoJ3gFZdAHF7NM=
 
+github.com/bytedance/sonic v1.10.1 h1:7a1wuFXL1cMy7a3f7/VFcEtriuXQnUBhtoVfOZiaysc=
 
+github.com/bytedance/sonic v1.10.1/go.mod h1:iZcSUejdk5aukTND/Eu/ivjQuEL0Cu9/rf50Hi0u/g4=
 
+github.com/cenkalti/backoff/v4 v4.2.1 h1:y4OZtCnogmCPw98Zjyt5a6+QwPLGkiQsYW5oUqylYbM=
 
+github.com/cenkalti/backoff/v4 v4.2.1/go.mod h1:Y3VNntkOUPxTVeUxJ/G5vcM//AlwfmyYozVcomhLiZE=
 
+github.com/chenzhuoyu/base64x v0.0.0-20211019084208-fb5309c8db06/go.mod h1:DH46F32mSOjUmXrMHnKwZdA8wcEefY7UVqBKYGjpdQY=
 
+github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311/go.mod h1:b583jCggY9gE99b6G5LEC39OIiVsWj+R97kbl5odCEk=
 
+github.com/chenzhuoyu/base64x v0.0.0-20230717121745-296ad89f973d h1:77cEq6EriyTZ0g/qfRdp61a3Uu/AWrgIq2s0ClJV1g0=
 
+github.com/chenzhuoyu/base64x v0.0.0-20230717121745-296ad89f973d/go.mod h1:8EPpVsBuRksnlj1mLy4AWzRNQYxauNi62uWcE3to6eA=
 
+github.com/chenzhuoyu/iasm v0.9.0 h1:9fhXjVzq5hUy2gkhhgHl95zG2cEAhw9OSGs8toWWAwo=
 
+github.com/chenzhuoyu/iasm v0.9.0/go.mod h1:Xjy2NpN3h7aUqeqM+woSuuvxmIe6+DDsiNLIrkAmYog=
 
+github.com/cloudflare/cloudflare-go v0.70.0 h1:4opGbUygM8DjirUuaz23jn3akuAcnOCEx+0nQtQEcFo=
 
+github.com/cloudflare/cloudflare-go v0.70.0/go.mod h1:VW6GuazkaZ4xEDkFt24lkXQUsE8q7BiGqDniC2s8WEM=
 
+github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 
+github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 
+github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 
+github.com/fatih/color v1.13.0 h1:8LOYc1KYPPmyKMuN8QV2DNRWNbLo6LZ0iLs8+mlH53w=
 
+github.com/fatih/color v1.13.0/go.mod h1:kLAiJbzzSOZDVNGyDpeOxJ47H46qBXwg5ILebYFFOfk=
 
+github.com/gabriel-vasile/mimetype v1.4.2 h1:w5qFW6JKBz9Y393Y4q372O9A7cUSequkh1Q7OhCmWKU=
 
+github.com/gabriel-vasile/mimetype v1.4.2/go.mod h1:zApsH/mKG4w07erKIaJPFiX0Tsq9BFQgN3qGY5GnNgA=
 
+github.com/gin-contrib/cors v1.5.0 h1:DgGKV7DDoOn36DFkNtbHrjoRiT5ExCe+PC9/xp7aKvk=
 
+github.com/gin-contrib/cors v1.5.0/go.mod h1:TvU7MAZ3EwrPLI2ztzTt3tqgvBCq+wn8WpZmfADjupI=
 
+github.com/gin-contrib/sse v0.1.0 h1:Y/yl/+YNO8GZSjAhjMsSuLt29uWRFHdHYUb5lYOV9qE=
 
+github.com/gin-contrib/sse v0.1.0/go.mod h1:RHrZQHXnP2xjPF+u1gW/2HnVO7nvIa9PG3Gm+fLHvGI=
 
+github.com/gin-gonic/gin v1.9.1 h1:4idEAncQnU5cB7BeOkPtxjfCSye0AAm1R0RVIqJ+Jmg=
 
+github.com/gin-gonic/gin v1.9.1/go.mod h1:hPrL7YrpYKXt5YId3A/Tnip5kqbEAP+KLuI3SUcPTeU=
 
+github.com/go-acme/lego/v4 v4.14.2 h1:/D/jqRgLi8Cbk33sLGtu2pX2jEg3bGJWHyV8kFuUHGM=
 
+github.com/go-acme/lego/v4 v4.14.2/go.mod h1:kBXxbeTg0x9AgaOYjPSwIeJy3Y33zTz+tMD16O4MO6c=
 
+github.com/go-jose/go-jose/v3 v3.0.0 h1:s6rrhirfEP/CGIoc6p+PZAeogN2SxKav6Wp7+dyMWVo=
 
+github.com/go-jose/go-jose/v3 v3.0.0/go.mod h1:RNkWWRld676jZEYoV3+XK8L2ZnNSvIsxFMht0mSX+u8=
 
+github.com/go-playground/assert/v2 v2.2.0 h1:JvknZsQTYeFEAhQwI4qEt9cyV5ONwRHC+lYKSsYSR8s=
 
+github.com/go-playground/assert/v2 v2.2.0/go.mod h1:VDjEfimB/XKnb+ZQfWdccd7VUvScMdVu0Titje2rxJ4=
 
+github.com/go-playground/locales v0.14.1 h1:EWaQ/wswjilfKLTECiXz7Rh+3BjFhfDFKv/oXslEjJA=
 
+github.com/go-playground/locales v0.14.1/go.mod h1:hxrqLVvrK65+Rwrd5Fc6F2O76J/NuW9t0sjnWqG1slY=
 
+github.com/go-playground/universal-translator v0.18.1 h1:Bcnm0ZwsGyWbCzImXv+pAJnYK9S473LQFuzCbDbfSFY=
 
+github.com/go-playground/universal-translator v0.18.1/go.mod h1:xekY+UJKNuX9WP91TpwSH2VMlDf28Uj24BCp08ZFTUY=
 
+github.com/go-playground/validator/v10 v10.15.5 h1:LEBecTWb/1j5TNY1YYG2RcOUN3R7NLylN+x8TTueE24=
 
+github.com/go-playground/validator/v10 v10.15.5/go.mod h1:9iXMNT7sEkjXb0I+enO7QXmzG6QCsPWY4zveKFVRSyU=
 
+github.com/goccy/go-json v0.10.2 h1:CrxCmQqYDkv1z7lO7Wbh2HN93uovUHgrECaO5ZrCXAU=
 
+github.com/goccy/go-json v0.10.2/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
 
+github.com/goji/httpauth v0.0.0-20160601135302-2da839ab0f4d/go.mod h1:nnjvkQ9ptGaCkuDUx6wNykzzlUixGxvkme+H/lnzb+A=
 
+github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
 
+github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 
+github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 
+github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 
+github.com/google/go-cmp v0.5.8 h1:e6P7q2lk1O+qJJb4BtCQXlK8vWEO8V1ZeuEdJNOqZyg=
 
+github.com/google/go-cmp v0.5.8/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 
+github.com/google/go-querystring v1.1.0 h1:AnCroh3fv4ZBgVIf1Iwtovgjaw/GiKJo8M8yD/fhyJ8=
 
+github.com/google/go-querystring v1.1.0/go.mod h1:Kcdr2DB4koayq7X8pmAG4sNG59So17icRSOU623lUBU=
 
+github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 
+github.com/hashicorp/go-cleanhttp v0.5.2 h1:035FKYIWjmULyFRBKPs8TBQoi0x6d9G4xc9neXJWAZQ=
 
+github.com/hashicorp/go-cleanhttp v0.5.2/go.mod h1:kO/YDlP8L1346E6Sodw+PrpBSV4/SoxCXGY6BqNFT48=
 
+github.com/hashicorp/go-hclog v0.9.2/go.mod h1:5CU+agLiy3J7N7QjHK5d05KxGsuXiQLrjA0H7acj2lQ=
 
+github.com/hashicorp/go-hclog v1.2.0 h1:La19f8d7WIlm4ogzNHB0JGqs5AUDAZ2UfCY4sJXcJdM=
 
+github.com/hashicorp/go-hclog v1.2.0/go.mod h1:whpDNt7SSdeAju8AWKIWsul05p54N/39EeqMAyrmvFQ=
 
+github.com/hashicorp/go-retryablehttp v0.7.4 h1:ZQgVdpTdAL7WpMIwLzCfbalOcSUdkDZnpUv3/+BxzFA=
 
+github.com/hashicorp/go-retryablehttp v0.7.4/go.mod h1:Jy/gPYAdjqffZ/yFGCFV2doI5wjtH1ewM9u8iYVjtX8=
 
+github.com/jinzhu/inflection v1.0.0 h1:K317FqzuhWc8YvSVlFMCCUb36O/S9MCKRDI7QkRKD/E=
 
+github.com/jinzhu/inflection v1.0.0/go.mod h1:h+uFLlag+Qp1Va5pdKtLDYj+kHp5pxUVkryuEj+Srlc=
 
+github.com/jinzhu/now v1.1.5 h1:/o9tlHleP7gOFmsnYNz3RGnqzefHA47wQpKrrdTIwXQ=
 
+github.com/jinzhu/now v1.1.5/go.mod h1:d3SSVoowX0Lcu0IBviAWJpolVfI5UJVZZ7cO71lE/z8=
 
+github.com/jmespath/go-jmespath v0.0.0-20180206201540-c2b33e8439af/go.mod h1:Nht3zPeWKUH0NzdCt2Blrr5ys8VGpn0CEB0cQHVjt7k=
 
+github.com/jmespath/go-jmespath v0.4.0 h1:BEgLn5cpjn8UN1mAw4NjwDrS35OdebyEtFe+9YPoQUg=
 
+github.com/jmespath/go-jmespath v0.4.0/go.mod h1:T8mJZnbsbmF+m6zOOFylbeCJqk5+pHWvzYPziyZiYoo=
 
+github.com/jmespath/go-jmespath/internal/testify v1.5.1 h1:shLQSRRSCCPj3f2gpwzGwWFoC7ycTf1rcQZHOlsJ6N8=
 
+github.com/jmespath/go-jmespath/internal/testify v1.5.1/go.mod h1:L3OGu8Wl2/fWfCI6z80xFu9LTZmf1ZRjMHUOPmWr69U=
 
+github.com/json-iterator/go v1.1.5/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
 
+github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
 
+github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
 
+github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
 
+github.com/klauspost/cpuid/v2 v2.2.5 h1:0E5MSMDEoAulmXNFquVs//DdoomxaoTY1kUhbc/qbZg=
 
+github.com/klauspost/cpuid/v2 v2.2.5/go.mod h1:Lcz8mBdAVJIBVzewtcLocK12l3Y+JytZYpaMropDUws=
 
+github.com/knz/go-libedit v1.10.1/go.mod h1:MZTVkCWyz0oBc7JOWP3wNAzd002ZbM/5hgShxwh4x8M=
 
+github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 
+github.com/kr/pretty v0.3.0 h1:WgNl7dwNpEZ6jJ9k1snq4pZsg7DOEN8hP9Xw0Tsjwk0=
 
+github.com/kr/pretty v0.3.0/go.mod h1:640gp4NfQd8pI5XOwp5fnNeVWj67G7CFk/SaSQn7NBk=
 
+github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 
+github.com/kr/text v0.1.0 h1:45sCR5RtlFHMR4UwH9sdQ5TC8v0qDQCHnXt+kaKSTVE=
 
+github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 
+github.com/leodido/go-urn v1.2.4 h1:XlAE/cm/ms7TE/VMVoduSpNBoyc2dOxHs5MZSwAN63Q=
 
+github.com/leodido/go-urn v1.2.4/go.mod h1:7ZrI8mTSeBSHl/UaRyKQW1qZeMgak41ANeCNaVckg+4=
 
+github.com/mattn/go-colorable v0.1.12 h1:jF+Du6AlPIjs2BiUiQlKOX0rt3SujHxPnksPKZbaA40=
 
+github.com/mattn/go-colorable v0.1.12/go.mod h1:u5H1YNBxpqRaxsYJYSkiCWKzEfiAb1Gb520KVy5xxl4=
 
+github.com/mattn/go-isatty v0.0.19 h1:JITubQf0MOLdlGRuRq+jtsDlekdYPia9ZFsB8h/APPA=
 
+github.com/mattn/go-isatty v0.0.19/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
 
+github.com/mattn/go-sqlite3 v1.14.17 h1:mCRHCLDUBXgpKAqIKsaAaAsrAlbkeomtRFKXh2L6YIM=
 
+github.com/mattn/go-sqlite3 v1.14.17/go.mod h1:2eHXhiwb8IkHr+BDWZGa96P6+rkvnG63S2DGjv9HUNg=
 
+github.com/miekg/dns v1.1.55 h1:GoQ4hpsj0nFLYe+bWiCToyrBEJXkQfOOIvFGFy0lEgo=
 
+github.com/miekg/dns v1.1.55/go.mod h1:uInx36IzPl7FYnDcMeVWxj9byh7DutNykX4G9Sj60FY=
 
+github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 
+github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
 
+github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 
+github.com/modern-go/reflect2 v1.0.1/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
 
+github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9Gz0M=
 
+github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
 
+github.com/nrdcg/dnspod-go v0.4.0 h1:c/jn1mLZNKF3/osJ6mz3QPxTudvPArXTjpkmYj0uK6U=
 
+github.com/nrdcg/dnspod-go v0.4.0/go.mod h1:vZSoFSFeQVm2gWLMkyX61LZ8HI3BaqtHZWgPTGKr6KQ=
 
+github.com/pelletier/go-toml/v2 v2.1.0 h1:FnwAJ4oYMvbT/34k9zzHuZNrhlz48GB3/s6at6/MHO4=
 
+github.com/pelletier/go-toml/v2 v2.1.0/go.mod h1:tJU2Z3ZkXwnxa4DPO899bsyIoywizdUvyaeZurnPPDc=
 
+github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 
+github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 
+github.com/robfig/cron/v3 v3.0.1 h1:WdRxkvbJztn8LMz/QEvLN5sBU+xKpSqwwUO1Pjr4qDs=
 
+github.com/robfig/cron/v3 v3.0.1/go.mod h1:eQICP3HwyT7UooqI/z+Ov+PtYAWygg1TEWWzGIFLtro=
 
+github.com/rogpeppe/go-internal v1.8.1 h1:geMPLpDpQOgVyCg5z5GoRwLHepNdb71NXb67XFkP+Eg=
 
+github.com/rogpeppe/go-internal v1.8.1/go.mod h1:JeRgkft04UBgHMgCIwADu4Pn6Mtm5d4nPKWu0nJ5d+o=
 
+github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 
+github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 
+github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 
+github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 
+github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 
+github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 
+github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 
+github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 
+github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 
+github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 
+github.com/stretchr/testify v1.8.2/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 
+github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
 
+github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
 
+github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS4MhqMhdFk5YI=
 
+github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
 
+github.com/ugorji/go/codec v1.2.11 h1:BMaWp1Bb6fHwEtbplGBGJ498wD+LKlNSl25MjdZY4dU=
 
+github.com/ugorji/go/codec v1.2.11/go.mod h1:UNopzCgEMSXjBc6AOMqYvWC1ktqTAfzJZUZgYf6w6lg=
 
+golang.org/x/arch v0.0.0-20210923205945-b76863e36670/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
 
+golang.org/x/arch v0.5.0 h1:jpGode6huXQxcskEIpOCvrU+tzo81b6+oFLUYXWtH/Y=
 
+golang.org/x/arch v0.5.0/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
 
+golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 
+golang.org/x/crypto v0.0.0-20190911031432-227b76d455e7/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 
+golang.org/x/crypto v0.14.0 h1:wBqGXzWJW6m1XrIKlAH0Hs1JJ7+9KBwnIO8v66Q9cHc=
 
+golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
 
+golang.org/x/mod v0.11.0 h1:bUO06HqtnRcc/7l71XBe4WcqTZ+3AH1J59zWDDwLKgU=
 
+golang.org/x/mod v0.11.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 
+golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 
+golang.org/x/net v0.16.0 h1:7eBu7KsSvFDtSXUIDbh3aqlK4DPsZ1rByC8PFfBThos=
 
+golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 
+golang.org/x/sync v0.3.0 h1:ftCYgMx6zT/asHUrPw8BLLscYtGznsLAnjq5RH9P66E=
 
+golang.org/x/sync v0.3.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
 
+golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 
+golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 
+golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 
+golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 
+golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
 
+golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 
+golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 
+golang.org/x/text v0.13.0 h1:ablQoSUd0tRdKxZewP80B+BaqeKJuVhuRxj/dkrun3k=
 
+golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 
+golang.org/x/time v0.3.0 h1:rg5rLMjNzMS1RkNLzCG38eapWhnYLFYXDXj2gOlr8j4=
 
+golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 
+golang.org/x/tools v0.10.0 h1:tvDr/iQoUqNdohiYm0LmmKcBk+q86lb9EprIUFhHHGg=
 
+golang.org/x/tools v0.10.0/go.mod h1:UJwyiVBsOA2uwvK/e5OY3GTpDUJriEd+/YlqAwLPmyM=
 
+golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 
+google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 
+google.golang.org/protobuf v1.31.0 h1:g0LDEJHgrBl9N9r17Ru3sqWhkIx2NB67okBHPwC7hs8=
 
+google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 
+gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 
+gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 
+gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
 
+gopkg.in/ini.v1 v1.66.2/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
 
+gopkg.in/ini.v1 v1.67.0 h1:Dgnx+6+nfE+IfzjUEISNeydPJh9AXNNsWbGP9KzCsOA=
 
+gopkg.in/ini.v1 v1.67.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
 
+gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 
+gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 
+gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 
+gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 
+gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 
+gorm.io/driver/sqlite v1.5.4 h1:IqXwXi8M/ZlPzH/947tn5uik3aYQslP9BVveoax0nV0=
 
+gorm.io/driver/sqlite v1.5.4/go.mod h1:qxAuCol+2r6PannQDpOP1FP6ag3mKi4esLnB/jHed+4=
 
+gorm.io/gorm v1.25.5 h1:zR9lOiiYf09VNh5Q1gphfyia1JpiClIWG9hQaxB/mls=
 
+gorm.io/gorm v1.25.5/go.mod h1:hbnx/Oo0ChWMn1BIhpy1oYozzpM15i4YPuHDmfYtwg8=
 
+nullprogram.com/x/optparse v1.0.0/go.mod h1:KdyPE+Igbe0jQUrVfMqDMeJQIJZEuyV7pjYmp6pbG50=
 
+rsc.io/pdf v0.1.1/go.mod h1:n8OzWcQ6Sp37PL01nO98y4iUCRdTGarVfzxY20ICaU4=

+ 293 - 0
backend/handlers/cert.go
Просмотреть файл 

@@ -0,0 +1,293 @@
 
+package handlers
 
+
 
+import (
 
+	"auto-ssl/config"
 
+	"auto-ssl/services"
 
+	"fmt"
 
+	"net/http"
 
+	"path/filepath"
 
+	"strconv"
 
+	"time"
 
+
 
+	"github.com/gin-gonic/gin"
 
+	"strings"
 
+)
 
+
 
+type CertHandler struct {
 
+	Cfg *config.Config
 
+}
 
+
 
+func NewCertHandler(cfg *config.Config) *CertHandler {
 
+	return &CertHandler{Cfg: cfg}
 
+}
 
+
 
+// ListCertificates returns all certificates
 
+func (h *CertHandler) ListCertificates(c *gin.Context) {
 
+	var certs []config.Certificate
 
+	if err := config.DB.Order("created_at desc").Find(&certs).Error; err != nil {
 
+		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 
+		return
 
+	}
 
+	c.JSON(http.StatusOK, certs)
 
+}
 
+
 
+// GetCertificate returns a single certificate
 
+func (h *CertHandler) GetCertificate(c *gin.Context) {
 
+	id, err := strconv.ParseUint(c.Param("id"), 10, 64)
 
+	if err != nil {
 
+		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid id"})
 
+		return
 
+	}
 
+	var cert config.Certificate
 
+	if err := config.DB.First(&cert, id).Error; err != nil {
 
+		c.JSON(http.StatusNotFound, gin.H{"error": "certificate not found"})
 
+		return
 
+	}
 
+	c.JSON(http.StatusOK, cert)
 
+}
 
+
 
+type CreateCertRequest struct {
 
+	Domain        string `json:"domain" binding:"required"`
 
+	Email         string `json:"email" binding:"required"`
 
+	Provider      string `json:"provider"`       // letsencrypt, zerossl
 
+	ChallengeType string `json:"challenge_type"` // http, dns
 
+	DNSProvider   string `json:"dns_provider"`
 
+	DNSConfig     string `json:"dns_config"` // JSON
 
+	AutoRenew     *bool  `json:"auto_renew"`
 
+	RenewDays     *int   `json:"renew_days"`
 
+}
 
+
 
+// CreateCertificate creates a new certificate entry and starts issuance
 
+func (h *CertHandler) CreateCertificate(c *gin.Context) {
 
+	var req CreateCertRequest
 
+	if err := c.ShouldBindJSON(&req); err != nil {
 
+		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 
+		return
 
+	}
 
+
 
+	if req.Provider == "" {
 
+		req.Provider = "letsencrypt"
 
+	}
 
+	if req.ChallengeType == "" {
 
+		req.ChallengeType = "http"
 
+	}
 
+
 
+	// Trim spaces from domain
 
+	req.Domain = strings.TrimSpace(req.Domain)
 
+
 
+	// Check if domain already exists
 
+	var existing config.Certificate
 
+	if err := config.DB.Where("domain = ?", req.Domain).First(&existing).Error; err == nil {
 
+		c.JSON(http.StatusConflict, gin.H{"error": "domain already exists"})
 
+		return
 
+	}
 
+
 
+	cert := config.Certificate{
 
+		Domain:        req.Domain,
 
+		Email:         req.Email,
 
+		Provider:      req.Provider,
 
+		ChallengeType: req.ChallengeType,
 
+		DNSProvider:   req.DNSProvider,
 
+		DNSConfig:     req.DNSConfig,
 
+		Status:        "pending",
 
+		AutoRenew:     true,
 
+		RenewDays:     30,
 
+	}
 
+
 
+	if req.AutoRenew != nil {
 
+		cert.AutoRenew = *req.AutoRenew
 
+	}
 
+	if req.RenewDays != nil {
 
+		cert.RenewDays = *req.RenewDays
 
+	}
 
+
 
+	if err := config.DB.Create(&cert).Error; err != nil {
 
+		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 
+		return
 
+	}
 
+
 
+	// Start issuance in background
 
+	go func() {
 
+		if err := services.GetACMECertificate(&cert, h.Cfg); err != nil {
 
+			cert.Status = "error"
 
+			cert.ErrorMessage = err.Error()
 
+		} else {
 
+			cert.Status = "active"
 
+		}
 
+		config.DB.Save(&cert)
 
+	}()
 
+
 
+	c.JSON(http.StatusAccepted, cert)
 
+}
 
+
 
+// RenewCertificate manually renews a certificate
 
+func (h *CertHandler) RenewCertificate(c *gin.Context) {
 
+	id, err := strconv.ParseUint(c.Param("id"), 10, 64)
 
+	if err != nil {
 
+		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid id"})
 
+		return
 
+	}
 
+
 
+	var cert config.Certificate
 
+	if err := config.DB.First(&cert, id).Error; err != nil {
 
+		c.JSON(http.StatusNotFound, gin.H{"error": "certificate not found"})
 
+		return
 
+	}
 
+
 
+	cert.Status = "renewing"
 
+	config.DB.Save(&cert)
 
+
 
+	go func() {
 
+		if err := services.RenewCertificate(&cert, h.Cfg); err != nil {
 
+			cert.Status = "error"
 
+			cert.ErrorMessage = err.Error()
 
+		} else {
 
+			cert.Status = "active"
 
+		}
 
+		config.DB.Save(&cert)
 
+	}()
 
+
 
+	c.JSON(http.StatusAccepted, gin.H{"message": "renewal started", "certificate": cert})
 
+}
 
+
 
+// DeleteCertificate deletes a certificate record and files
 
+func (h *CertHandler) DeleteCertificate(c *gin.Context) {
 
+	id, err := strconv.ParseUint(c.Param("id"), 10, 64)
 
+	if err != nil {
 
+		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid id"})
 
+		return
 
+	}
 
+
 
+	var cert config.Certificate
 
+	if err := config.DB.First(&cert, id).Error; err != nil {
 
+		c.JSON(http.StatusNotFound, gin.H{"error": "certificate not found"})
 
+		return
 
+	}
 
+
 
+	if err := config.DB.Delete(&cert).Error; err != nil {
 
+		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 
+		return
 
+	}
 
+
 
+	c.JSON(http.StatusOK, gin.H{"message": "certificate deleted"})
 
+}
 
+
 
+// UpdateCertificate updates certificate settings
 
+func (h *CertHandler) UpdateCertificate(c *gin.Context) {
 
+	id, err := strconv.ParseUint(c.Param("id"), 10, 64)
 
+	if err != nil {
 
+		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid id"})
 
+		return
 
+	}
 
+
 
+	var cert config.Certificate
 
+	if err := config.DB.First(&cert, id).Error; err != nil {
 
+		c.JSON(http.StatusNotFound, gin.H{"error": "certificate not found"})
 
+		return
 
+	}
 
+
 
+	var updates map[string]interface{}
 
+	if err := c.ShouldBindJSON(&updates); err != nil {
 
+		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 
+		return
 
+	}
 
+
 
+	// Only allow updating certain fields
 
+	allowedFields := map[string]bool{
 
+		"auto_renew": true,
 
+		"renew_days": true,
 
+		"dns_config": true,
 
+	}
 
+
 
+	filtered := make(map[string]interface{})
 
+	for k, v := range updates {
 
+		if allowedFields[k] {
 
+			filtered[k] = v
 
+		}
 
+	}
 
+
 
+	if err := config.DB.Model(&cert).Updates(filtered).Error; err != nil {
 
+		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 
+		return
 
+	}
 
+
 
+	c.JSON(http.StatusOK, cert)
 
+}
 
+
 
+// GetCertFiles returns the content of certificate files for download
 
+func (h *CertHandler) GetCertFiles(c *gin.Context) {
 
+	id, err := strconv.ParseUint(c.Param("id"), 10, 64)
 
+	if err != nil {
 
+		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid id"})
 
+		return
 
+	}
 
+
 
+	var cert config.Certificate
 
+	if err := config.DB.First(&cert, id).Error; err != nil {
 
+		c.JSON(http.StatusNotFound, gin.H{"error": "certificate not found"})
 
+		return
 
+	}
 
+
 
+	fullchain, privkey, chain := services.GetCertFilesPaths(cert.Domain, h.Cfg)
 
+
 
+	result := gin.H{
 
+		"domain":    cert.Domain,
 
+		"fullchain": readFileSafe(fullchain),
 
+		"privkey":   readFileSafe(privkey),
 
+		"chain":     readFileSafe(chain),
 
+	}
 
+	c.JSON(http.StatusOK, result)
 
+}
 
+
 
+// CheckRenewals checks all certificates and renews those about to expire
 
+func (h *CertHandler) CheckRenewals(c *gin.Context) {
 
+	var certs []config.Certificate
 
+	config.DB.Where("auto_renew = ? AND status = ?", true, "active").Find(&certs)
 
+
 
+	renewed := []string{}
 
+	failed := []string{}
 
+
 
+	for _, cert := range certs {
 
+		if cert.ExpiresAt != nil && time.Until(*cert.ExpiresAt).Hours() < float64(cert.RenewDays*24) {
 
+			if err := services.RenewCertificate(&cert, h.Cfg); err != nil {
 
+				cert.Status = "error"
 
+				cert.ErrorMessage = fmt.Sprintf("auto renew failed: %v", err)
 
+				failed = append(failed, cert.Domain)
 
+			} else {
 
+				cert.Status = "active"
 
+				renewed = append(renewed, cert.Domain)
 
+			}
 
+			config.DB.Save(&cert)
 
+		}
 
+	}
 
+
 
+	c.JSON(http.StatusOK, gin.H{
 
+		"message": "renewal check complete",
 
+		"renewed": renewed,
 
+		"failed":  failed,
 
+	})
 
+}
 
+
 
+// Stats returns dashboard statistics
 
+func (h *CertHandler) Stats(c *gin.Context) {
 
+	var total, active, expired, errors int64
 
+	config.DB.Model(&config.Certificate{}).Count(&total)
 
+	config.DB.Model(&config.Certificate{}).Where("status = ?", "active").Count(&active)
 
+	config.DB.Model(&config.Certificate{}).Where("status = ?", "expired").Count(&expired)
 
+	config.DB.Model(&config.Certificate{}).Where("status = ?", "error").Count(&errors)
 
+
 
+	c.JSON(http.StatusOK, gin.H{
 
+		"total":   total,
 
+		"active":  active,
 
+		"expired": expired,
 
+		"errors":  errors,
 
+	})
 
+}
 
+
 
+func readFileSafe(path string) string {
 
+	data, err := filepath.Abs(path)
 
+	if err != nil {
 
+		return ""
 
+	}
 
+	return data
 
+}

+ 103 - 0
backend/main.go
Просмотреть файл 

@@ -0,0 +1,103 @@
 
+package main
 
+
 
+import (
 
+	"auto-ssl/config"
 
+	"auto-ssl/handlers"
 
+	"auto-ssl/services"
 
+	"log"
 
+	"os"
 
+	"time"
 
+
 
+	"github.com/gin-contrib/cors"
 
+	"github.com/gin-gonic/gin"
 
+	"github.com/robfig/cron/v3"
 
+)
 
+
 
+func main() {
 
+	cfg := config.Load()
 
+
 
+	// Initialize database
 
+	config.InitDB(cfg)
 
+
 
+	// Setup Gin
 
+	gin.SetMode(gin.ReleaseMode)
 
+	r := gin.Default()
 
+
 
+	// CORS for Vue frontend
 
+	r.Use(cors.New(cors.Config{
 
+		AllowOrigins:     []string{"*"},
 
+		AllowMethods:     []string{"GET", "POST", "PUT", "DELETE", "OPTIONS"},
 
+		AllowHeaders:     []string{"Origin", "Content-Type", "Accept", "Authorization"},
 
+		AllowCredentials: true,
 
+	}))
 
+
 
+	// Serve static files for frontend
 
+	r.Static("/assets", "./dist/assets")
 
+	r.StaticFile("/favicon.ico", "./dist/favicon.ico")
 
+	r.StaticFile("/", "./dist/index.html")
 
+	r.NoRoute(func(c *gin.Context) {
 
+		c.File("./dist/index.html")
 
+	})
 
+
 
+	// API routes
 
+	api := r.Group("/api")
 
+	{
 
+		certHandler := handlers.NewCertHandler(cfg)
 
+
 
+		// Certificate management
 
+		api.GET("/certificates", certHandler.ListCertificates)
 
+		api.GET("/certificates/:id", certHandler.GetCertificate)
 
+		api.POST("/certificates", certHandler.CreateCertificate)
 
+		api.PUT("/certificates/:id", certHandler.UpdateCertificate)
 
+		api.DELETE("/certificates/:id", certHandler.DeleteCertificate)
 
+		api.POST("/certificates/:id/renew", certHandler.RenewCertificate)
 
+		api.GET("/certificates/:id/files", certHandler.GetCertFiles)
 
+
 
+		// Utility
 
+		api.GET("/renewals/check", certHandler.CheckRenewals)
 
+		api.GET("/stats", certHandler.Stats)
 
+	}
 
+
 
+	// Setup cron for auto-renewal (runs daily at 3:00 AM)
 
+	c := cron.New()
 
+	c.AddFunc("0 3 * * *", func() {
 
+		log.Println("Running scheduled certificate renewal check...")
 
+		var certs []config.Certificate
 
+		config.DB.Where("auto_renew = ? AND status = ?", true, "active").Find(&certs)
 
+
 
+		for _, cert := range certs {
 
+			if cert.ExpiresAt != nil && time.Until(*cert.ExpiresAt).Hours() < float64(cert.RenewDays*24) {
 
+				log.Printf("Auto-renewing certificate for %s (expires %s)", cert.Domain, cert.ExpiresAt.Format(time.RFC3339))
 
+				if err := services.RenewCertificate(&cert, cfg); err != nil {
 
+					cert.Status = "error"
 
+					cert.ErrorMessage = "auto renew: " + err.Error()
 
+					log.Printf("Auto-renew failed for %s: %v", cert.Domain, err)
 
+				} else {
 
+					log.Printf("Auto-renew succeeded for %s", cert.Domain)
 
+				}
 
+				config.DB.Save(&cert)
 
+			}
 
+		}
 
+	})
 
+	c.Start()
 
+
 
+	// Setup HTTP server for ACME HTTP-01 challenges (port 80)
 
+	httpPort := os.Getenv("HTTP_PORT")
 
+	if httpPort == "" {
 
+		httpPort = "80"
 
+	}
 
+	go func() {
 
+		acme := gin.New()
 
+		acme.Use(gin.Recovery())
 
+		// HTTP-01 challenge handler from lego
 
+		log.Printf("ACME HTTP challenge server listening on :%s", httpPort)
 
+		if err := acme.Run(":" + httpPort); err != nil {
 
+			log.Printf("ACME HTTP server (port %s) exited: %v", httpPort, err)
 
+		}
 
+	}()
 
+
 
+	log.Printf("AutoSSL server starting on :%s", cfg.Port)
 
+	if err := r.Run(":" + cfg.Port); err != nil {
 
+		log.Fatalf("Failed to start server: %v", err)
 
+	}
 
+}

+ 323 - 0
backend/services/acme.go
Просмотреть файл 

@@ -0,0 +1,323 @@
 
+package services
 
+
 
+import (
 
+	"auto-ssl/config"
 
+	"crypto"
 
+	"crypto/ecdsa"
 
+	"crypto/elliptic"
 
+	"crypto/rand"
 
+	"crypto/x509"
 
+	"encoding/json"
 
+	"encoding/pem"
 
+	"fmt"
 
+	"log"
 
+	"os"
 
+	"path/filepath"
 
+	"strings"
 
+	"time"
 
+
 
+	"github.com/go-acme/lego/v4/certcrypto"
 
+	"github.com/go-acme/lego/v4/certificate"
 
+	"github.com/go-acme/lego/v4/challenge"
 
+	"github.com/go-acme/lego/v4/challenge/http01"
 
+	"github.com/go-acme/lego/v4/challenge/dns01"
 
+	"github.com/go-acme/lego/v4/lego"
 
+	alidnsprov "github.com/go-acme/lego/v4/providers/dns/alidns"
 
+	cloudflareprov "github.com/go-acme/lego/v4/providers/dns/cloudflare"
 
+	dnspodprov "github.com/go-acme/lego/v4/providers/dns/dnspod"
 
+	"github.com/go-acme/lego/v4/registration"
 
+)
 
+
 
+type ACMEAccount struct {
 
+	Email        string
 
+	PrivateKey   crypto.PrivateKey
 
+	Registration *registration.Resource
 
+}
 
+
 
+// DNSConfig represents DNS provider configuration
 
+type DNSConfig struct {
 
+	Provider string `json:"provider"`
 
+
 
+	// Aliyun DNS
 
+	AliKey    string `json:"ali_key,omitempty"`
 
+	AliSecret string `json:"ali_secret,omitempty"`
 
+
 
+	// Cloudflare
 
+	CFAPIToken string `json:"cf_api_token,omitempty"`
 
+
 
+	// DNSPod
 
+	DNSPodID  string `json:"dnspod_id,omitempty"`
 
+	DNSPodKey string `json:"dnspod_key,omitempty"`
 
+}
 
+
 
+// GetACMECertificate obtains a certificate from ACME provider
 
+func GetACMECertificate(cert *config.Certificate, cfg *config.Config) error {
 
+	dir := filepath.Join(cfg.AccountsDir, sanitizeEmail(cert.Email))
 
+
 
+	account, err := getOrCreateAccount(cert.Email, cert.Provider, dir)
 
+	if err != nil {
 
+		return fmt.Errorf("failed to setup ACME account: %v", err)
 
+	}
 
+
 
+	legoCfg := lego.NewConfig(account)
 
+	legoCfg.CADirURL = getCADirURL(cert.Provider)
 
+	legoCfg.Certificate.KeyType = certcrypto.RSA2048
 
+
 
+	client, err := lego.NewClient(legoCfg)
 
+	if err != nil {
 
+		return fmt.Errorf("failed to create lego client: %v", err)
 
+	}
 
+
 
+	if strings.ToLower(cert.ChallengeType) == "dns" {
 
+		provider, err := getDNSProvider(cert)
 
+		if err != nil {
 
+			return fmt.Errorf("failed to create DNS provider: %v", err)
 
+		}
 
+		if err := client.Challenge.SetDNS01Provider(provider,
 
+			dns01.AddRecursiveNameservers(dns01.ParseNameservers([]string{"8.8.8.8:53", "1.1.1.1:53"})),
 
+		); err != nil {
 
+			return fmt.Errorf("failed to set DNS-01 provider: %v", err)
 
+		}
 
+	} else {
 
+		if err := client.Challenge.SetHTTP01Provider(http01.NewProviderServer("", "80")); err != nil {
 
+			return fmt.Errorf("failed to set HTTP-01 provider: %v", err)
 
+		}
 
+	}
 
+
 
+	request := certificate.ObtainRequest{
 
+		Domains:    []string{cert.Domain},
 
+		Bundle:     true,
 
+		MustStaple: false,
 
+	}
 
+	certRes, err := client.Certificate.Obtain(request)
 
+	if err != nil {
 
+		return fmt.Errorf("failed to obtain certificate: %v", err)
 
+	}
 
+
 
+	// Save certificate files
 
+	certDir := filepath.Join(cfg.CertDir, sanitizeDomain(cert.Domain))
 
+	if err := os.MkdirAll(certDir, 0700); err != nil {
 
+		return fmt.Errorf("failed to create cert directory: %v", err)
 
+	}
 
+
 
+	os.WriteFile(filepath.Join(certDir, "fullchain.pem"), certRes.Certificate, 0644)
 
+	os.WriteFile(filepath.Join(certDir, "privkey.pem"), certRes.PrivateKey, 0600)
 
+	os.WriteFile(filepath.Join(certDir, "chain.pem"), certRes.IssuerCertificate, 0644)
 
+
 
+	now := time.Now()
 
+	expiresAt := parseCertExpiry(certRes.Certificate)
 
+	cert.Status = "active"
 
+	cert.CertURL = certRes.CertURL
 
+	cert.ExpiresAt = expiresAt
 
+	cert.LastRenewedAt = &now
 
+	cert.ErrorMessage = ""
 
+
 
+	log.Printf("Certificate obtained successfully for %s, expires at %s", cert.Domain, expiresAt.Format(time.RFC3339))
 
+	return nil
 
+}
 
+
 
+// RenewCertificate renews an existing certificate
 
+func RenewCertificate(cert *config.Certificate, cfg *config.Config) error {
 
+	dir := filepath.Join(cfg.AccountsDir, sanitizeEmail(cert.Email))
 
+
 
+	account, err := getOrCreateAccount(cert.Email, cert.Provider, dir)
 
+	if err != nil {
 
+		return fmt.Errorf("failed to setup ACME account: %v", err)
 
+	}
 
+
 
+	legoCfg := lego.NewConfig(account)
 
+	legoCfg.CADirURL = getCADirURL(cert.Provider)
 
+	legoCfg.Certificate.KeyType = certcrypto.RSA2048
 
+
 
+	client, err := lego.NewClient(legoCfg)
 
+	if err != nil {
 
+		return fmt.Errorf("failed to create lego client: %v", err)
 
+	}
 
+
 
+	if strings.ToLower(cert.ChallengeType) == "dns" {
 
+		provider, err := getDNSProvider(cert)
 
+		if err != nil {
 
+			return fmt.Errorf("failed to create DNS provider: %v", err)
 
+		}
 
+		if err := client.Challenge.SetDNS01Provider(provider,
 
+			dns01.AddRecursiveNameservers(dns01.ParseNameservers([]string{"8.8.8.8:53", "1.1.1.1:53"})),
 
+		); err != nil {
 
+			return fmt.Errorf("failed to set DNS-01 provider: %v", err)
 
+		}
 
+	} else {
 
+		if err := client.Challenge.SetHTTP01Provider(http01.NewProviderServer("", "80")); err != nil {
 
+			return fmt.Errorf("failed to set HTTP-01 provider: %v", err)
 
+		}
 
+	}
 
+
 
+	certRes, err := client.Certificate.Renew(certificate.Resource{
 
+		Domain:      cert.Domain,
 
+		CertURL:     cert.CertURL,
 
+		PrivateKey:  nil,
 
+		Certificate: nil,
 
+	}, true, false, "")
 
+	if err != nil {
 
+		return fmt.Errorf("failed to renew certificate: %v", err)
 
+	}
 
+
 
+	certDir := filepath.Join(cfg.CertDir, sanitizeDomain(cert.Domain))
 
+	os.MkdirAll(certDir, 0700)
 
+	os.WriteFile(filepath.Join(certDir, "fullchain.pem"), certRes.Certificate, 0644)
 
+	os.WriteFile(filepath.Join(certDir, "privkey.pem"), certRes.PrivateKey, 0600)
 
+	os.WriteFile(filepath.Join(certDir, "chain.pem"), certRes.IssuerCertificate, 0644)
 
+
 
+	now := time.Now()
 
+	expiresAt := parseCertExpiry(certRes.Certificate)
 
+	cert.Status = "active"
 
+	cert.CertURL = certRes.CertURL
 
+	cert.ExpiresAt = expiresAt
 
+	cert.LastRenewedAt = &now
 
+	cert.ErrorMessage = ""
 
+
 
+	log.Printf("Certificate renewed successfully for %s, expires at %s", cert.Domain, expiresAt.Format(time.RFC3339))
 
+	return nil
 
+}
 
+
 
+// GetCertFilesPaths returns paths to certificate files
 
+func GetCertFilesPaths(domain string, cfg *config.Config) (fullchain, privkey, chain string) {
 
+	dir := filepath.Join(cfg.CertDir, sanitizeDomain(domain))
 
+	return filepath.Join(dir, "fullchain.pem"),
 
+		filepath.Join(dir, "privkey.pem"),
 
+		filepath.Join(dir, "chain.pem")
 
+}
 
+
 
+func getOrCreateAccount(email, provider, dir string) (*ACMEAccount, error) {
 
+	keyFile := filepath.Join(dir, "account.key")
 
+	regFile := filepath.Join(dir, "registration.json")
 
+	os.MkdirAll(dir, 0700)
 
+
 
+	// Try to load existing account
 
+	if data, err := os.ReadFile(keyFile); err == nil {
 
+		block, _ := pem.Decode(data)
 
+		if block != nil {
 
+			key, err := x509.ParseECPrivateKey(block.Bytes)
 
+			if err == nil {
 
+				reg := &registration.Resource{}
 
+				if regData, err := os.ReadFile(regFile); err == nil {
 
+					json.Unmarshal(regData, reg)
 
+				}
 
+				return &ACMEAccount{Email: email, PrivateKey: key, Registration: reg}, nil
 
+			}
 
+		}
 
+	}
 
+
 
+	// Create new account
 
+	privateKey, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
 
+	if err != nil {
 
+		return nil, fmt.Errorf("failed to generate private key: %v", err)
 
+	}
 
+
 
+	account := &ACMEAccount{Email: email, PrivateKey: privateKey}
 
+
 
+	legoCfg := lego.NewConfig(account)
 
+	legoCfg.CADirURL = getCADirURL(provider)
 
+	legoCfg.Certificate.KeyType = certcrypto.RSA2048
 
+
 
+	client, err := lego.NewClient(legoCfg)
 
+	if err != nil {
 
+		return nil, fmt.Errorf("failed to create lego client: %v", err)
 
+	}
 
+
 
+	reg, err := client.Registration.Register(registration.RegisterOptions{
 
+		TermsOfServiceAgreed: true,
 
+	})
 
+	if err != nil {
 
+		return nil, fmt.Errorf("failed to register ACME account: %v", err)
 
+	}
 
+	account.Registration = reg
 
+
 
+	keyData, _ := x509.MarshalECPrivateKey(privateKey)
 
+	pemData := pem.EncodeToMemory(&pem.Block{Type: "EC PRIVATE KEY", Bytes: keyData})
 
+	os.WriteFile(keyFile, pemData, 0600)
 
+
 
+	regData, _ := json.MarshalIndent(reg, "", "  ")
 
+	os.WriteFile(regFile, regData, 0600)
 
+
 
+	log.Printf("New ACME account created for %s with %s", email, provider)
 
+	return account, nil
 
+}
 
+
 
+func getCADirURL(provider string) string {
 
+	switch strings.ToLower(provider) {
 
+	case "zerossl":
 
+		return "https://acme.zerossl.com/v2/DV90"
 
+	default:
 
+		return "https://acme-v02.api.letsencrypt.org/directory"
 
+	}
 
+}
 
+
 
+func getDNSProvider(cert *config.Certificate) (challenge.Provider, error) {
 
+	var dnsCfg DNSConfig
 
+	if cert.DNSConfig != "" {
 
+		if err := json.Unmarshal([]byte(cert.DNSConfig), &dnsCfg); err != nil {
 
+			return nil, fmt.Errorf("invalid DNS config JSON: %v", err)
 
+		}
 
+	}
 
+
 
+	switch strings.ToLower(cert.DNSProvider) {
 
+	case "alidns", "aliyun":
 
+		cfg := alidnsprov.NewDefaultConfig()
 
+		cfg.APIKey = dnsCfg.AliKey
 
+		cfg.SecretKey = dnsCfg.AliSecret
 
+		provider, err := alidnsprov.NewDNSProviderConfig(cfg)
 
+		if err != nil {
 
+			return nil, fmt.Errorf("failed to create Aliyun DNS provider: %v", err)
 
+		}
 
+		return provider, nil
 
+
 
+	case "cloudflare":
 
+		cfg := cloudflareprov.NewDefaultConfig()
 
+		if dnsCfg.CFAPIToken != "" {
 
+			cfg.AuthToken = dnsCfg.CFAPIToken
 
+		}
 
+		provider, err := cloudflareprov.NewDNSProviderConfig(cfg)
 
+		if err != nil {
 
+			return nil, fmt.Errorf("failed to create Cloudflare DNS provider: %v", err)
 
+		}
 
+		return provider, nil
 
+
 
+	case "dnspod":
 
+		cfg := dnspodprov.NewDefaultConfig()
 
+		if dnsCfg.DNSPodID != "" && dnsCfg.DNSPodKey != "" {
 
+			cfg.LoginToken = dnsCfg.DNSPodID + "," + dnsCfg.DNSPodKey
 
+		}
 
+		provider, err := dnspodprov.NewDNSProviderConfig(cfg)
 
+		if err != nil {
 
+			return nil, fmt.Errorf("failed to create DNSPod DNS provider: %v", err)
 
+		}
 
+		return provider, nil
 
+
 
+	default:
 
+		return nil, fmt.Errorf("unsupported DNS provider: %s", dnsCfg.Provider)
 
+	}
 
+}
 
+
 
+func parseCertExpiry(certPEM []byte) *time.Time {
 
+	block, _ := pem.Decode(certPEM)
 
+	if block == nil {
 
+		return nil
 
+	}
 
+	cert, err := x509.ParseCertificate(block.Bytes)
 
+	if err != nil {
 
+		return nil
 
+	}
 
+	return &cert.NotAfter
 
+}
 
+
 
+func sanitizeEmail(email string) string {
 
+	return strings.NewReplacer("@", "_at_", ".", "_dot_").Replace(email)
 
+}
 
+
 
+func sanitizeDomain(domain string) string {
 
+	return strings.NewReplacer("*", "wildcard_", ".", "_").Replace(domain)
 
+}
 
+
 
+// lego User interface implementation
 
+func (a *ACMEAccount) GetEmail() string        { return a.Email }
 
+func (a *ACMEAccount) GetRegistration() *registration.Resource { return a.Registration }
 
+func (a *ACMEAccount) GetPrivateKey() crypto.PrivateKey { return a.PrivateKey }

+ 13 - 0
docker-compose.yml
Просмотреть файл 

@@ -0,0 +1,13 @@
 
+services:
 
+  autossl:
 
+    build: .
 
+    container_name: autossl
 
+    restart: unless-stopped
 
+    ports:
 
+      - "8080:8080"   # Web UI and API
 
+      - "80:80"       # HTTP-01 challenge
 
+    environment:
 
+      - PORT=8080
 
+      - TZ=Asia/Shanghai
 
+    volumes:
 
+      - ./data:/app/data

+ 24 - 0
frontend/.gitignore
Просмотреть файл 

@@ -0,0 +1,24 @@
 
+# Logs
 
+logs
 
+*.log
 
+npm-debug.log*
 
+yarn-debug.log*
 
+yarn-error.log*
 
+pnpm-debug.log*
 
+lerna-debug.log*
 
+
 
+node_modules
 
+dist
 
+dist-ssr
 
+*.local
 
+
 
+# Editor directories and files
 
+.vscode/*
 
+!.vscode/extensions.json
 
+.idea
 
+.DS_Store
 
+*.suo
 
+*.ntvs*
 
+*.njsproj
 
+*.sln
 
+*.sw?

+ 5 - 0
frontend/README.md
Просмотреть файл 

@@ -0,0 +1,5 @@
 
+# Vue 3 + TypeScript + Vite
 
+
 
+This template should help get you started developing with Vue 3 and TypeScript in Vite. The template uses Vue 3 `<script setup>` SFCs, check out the [script setup docs](https://v3.vuejs.org/api/sfc-script-setup.html#sfc-script-setup) to learn more.
 
+
 
+Learn more about the recommended Project Setup and IDE Support in the [Vue Docs TypeScript Guide](https://vuejs.org/guide/typescript/overview.html#project-setup).

+ 13 - 0
frontend/index.html
Просмотреть файл 

@@ -0,0 +1,13 @@
 
+<!doctype html>
 
+<html lang="en">
 
+  <head>
 
+    <meta charset="UTF-8" />
 
+    <link rel="icon" type="image/svg+xml" href="/favicon.svg" />
 
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
 
+    <title>AutoSSL 证书管理</title>
 
+  </head>
 
+  <body>
 
+    <div id="app"></div>
 
+    <script type="module" src="/src/main.ts"></script>
 
+  </body>
 
+</html>

Разница между файлами не показана из-за своего большого размера
+ 0 - 0
frontend/public/favicon.svg


+ 24 - 0
frontend/public/icons.svg
Просмотреть файл 

@@ -0,0 +1,24 @@
 
+<svg xmlns="http://www.w3.org/2000/svg">
 
+  <symbol id="bluesky-icon" viewBox="0 0 16 17">
 
+    <g clip-path="url(#bluesky-clip)"><path fill="#08060d" d="M7.75 7.735c-.693-1.348-2.58-3.86-4.334-5.097-1.68-1.187-2.32-.981-2.74-.79C.188 2.065.1 2.812.1 3.251s.241 3.602.398 4.13c.52 1.744 2.367 2.333 4.07 2.145-2.495.37-4.71 1.278-1.805 4.512 3.196 3.309 4.38-.71 4.987-2.746.608 2.036 1.307 5.91 4.93 2.746 2.72-2.746.747-4.143-1.747-4.512 1.702.189 3.55-.4 4.07-2.145.156-.528.397-3.691.397-4.13s-.088-1.186-.575-1.406c-.42-.19-1.06-.395-2.741.79-1.755 1.24-3.64 3.752-4.334 5.099"/></g>
 
+    <defs><clipPath id="bluesky-clip"><path fill="#fff" d="M.1.85h15.3v15.3H.1z"/></clipPath></defs>
 
+  </symbol>
 
+  <symbol id="discord-icon" viewBox="0 0 20 19">
 
+    <path fill="#08060d" d="M16.224 3.768a14.5 14.5 0 0 0-3.67-1.153c-.158.286-.343.67-.47.976a13.5 13.5 0 0 0-4.067 0c-.128-.306-.317-.69-.476-.976A14.4 14.4 0 0 0 3.868 3.77C1.546 7.28.916 10.703 1.231 14.077a14.7 14.7 0 0 0 4.5 2.306q.545-.748.965-1.587a9.5 9.5 0 0 1-1.518-.74q.191-.14.372-.293c2.927 1.369 6.107 1.369 8.999 0q.183.152.372.294-.723.437-1.52.74.418.838.963 1.588a14.6 14.6 0 0 0 4.504-2.308c.37-3.911-.63-7.302-2.644-10.309m-9.13 8.234c-.878 0-1.599-.82-1.599-1.82 0-.998.705-1.82 1.6-1.82.894 0 1.614.82 1.599 1.82.001 1-.705 1.82-1.6 1.82m5.91 0c-.878 0-1.599-.82-1.599-1.82 0-.998.705-1.82 1.6-1.82.893 0 1.614.82 1.599 1.82 0 1-.706 1.82-1.6 1.82"/>
 
+  </symbol>
 
+  <symbol id="documentation-icon" viewBox="0 0 21 20">
 
+    <path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="m15.5 13.333 1.533 1.322c.645.555.967.833.967 1.178s-.322.623-.967 1.179L15.5 18.333m-3.333-5-1.534 1.322c-.644.555-.966.833-.966 1.178s.322.623.966 1.179l1.534 1.321"/>
 
+    <path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="M17.167 10.836v-4.32c0-1.41 0-2.117-.224-2.68-.359-.906-1.118-1.621-2.08-1.96-.599-.21-1.349-.21-2.848-.21-2.623 0-3.935 0-4.983.369-1.684.591-3.013 1.842-3.641 3.428C3 6.449 3 7.684 3 10.154v2.122c0 2.558 0 3.838.706 4.726q.306.383.713.671c.76.536 1.79.64 3.581.66"/>
 
+    <path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="M3 10a2.78 2.78 0 0 1 2.778-2.778c.555 0 1.209.097 1.748-.047.48-.129.854-.503.982-.982.145-.54.048-1.194.048-1.749a2.78 2.78 0 0 1 2.777-2.777"/>
 
+  </symbol>
 
+  <symbol id="github-icon" viewBox="0 0 19 19">
 
+    <path fill="#08060d" fill-rule="evenodd" d="M9.356 1.85C5.05 1.85 1.57 5.356 1.57 9.694a7.84 7.84 0 0 0 5.324 7.44c.387.079.528-.168.528-.376 0-.182-.013-.805-.013-1.454-2.165.467-2.616-.935-2.616-.935-.349-.91-.864-1.143-.864-1.143-.71-.48.051-.48.051-.48.787.051 1.2.805 1.2.805.695 1.194 1.817.857 2.268.649.064-.507.27-.857.49-1.052-1.728-.182-3.545-.857-3.545-3.87 0-.857.31-1.558.8-2.104-.078-.195-.349-1 .077-2.078 0 0 .657-.208 2.14.805a7.5 7.5 0 0 1 1.946-.26c.657 0 1.328.092 1.946.26 1.483-1.013 2.14-.805 2.14-.805.426 1.078.155 1.883.078 2.078.502.546.799 1.247.799 2.104 0 3.013-1.818 3.675-3.558 3.87.284.247.528.714.528 1.454 0 1.052-.012 1.896-.012 2.156 0 .208.142.455.528.377a7.84 7.84 0 0 0 5.324-7.441c.013-4.338-3.48-7.844-7.773-7.844" clip-rule="evenodd"/>
 
+  </symbol>
 
+  <symbol id="social-icon" viewBox="0 0 20 20">
 
+    <path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="M12.5 6.667a4.167 4.167 0 1 0-8.334 0 4.167 4.167 0 0 0 8.334 0"/>
 
+    <path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="M2.5 16.667a5.833 5.833 0 0 1 8.75-5.053m3.837.474.513 1.035c.07.144.257.282.414.309l.93.155c.596.1.736.536.307.965l-.723.73a.64.64 0 0 0-.152.531l.207.903c.164.715-.213.991-.84.618l-.872-.52a.63.63 0 0 0-.577 0l-.872.52c-.624.373-1.003.094-.84-.618l.207-.903a.64.64 0 0 0-.152-.532l-.723-.729c-.426-.43-.289-.864.306-.964l.93-.156a.64.64 0 0 0 .412-.31l.513-1.034c.28-.562.735-.562 1.012 0"/>
 
+  </symbol>
 
+  <symbol id="x-icon" viewBox="0 0 19 19">
 
+    <path fill="#08060d" fill-rule="evenodd" d="M1.893 1.98c.052.072 1.245 1.769 2.653 3.77l2.892 4.114c.183.261.333.48.333.486s-.068.089-.152.183l-.522.593-.765.867-3.597 4.087c-.375.426-.734.834-.798.905a1 1 0 0 0-.118.148c0 .01.236.017.664.017h.663l.729-.83c.4-.457.796-.906.879-.999a692 692 0 0 0 1.794-2.038c.034-.037.301-.34.594-.675l.551-.624.345-.392a7 7 0 0 1 .34-.374c.006 0 .93 1.306 2.052 2.903l2.084 2.965.045.063h2.275c1.87 0 2.273-.003 2.266-.021-.008-.02-1.098-1.572-3.894-5.547-2.013-2.862-2.28-3.246-2.273-3.266.008-.019.282-.332 2.085-2.38l2-2.274 1.567-1.782c.022-.028-.016-.03-.65-.03h-.674l-.3.342a871 871 0 0 1-1.782 2.025c-.067.075-.405.458-.75.852a100 100 0 0 1-.803.91c-.148.172-.299.344-.99 1.127-.304.343-.32.358-.345.327-.015-.019-.904-1.282-1.976-2.808L6.365 1.85H1.8zm1.782.91 8.078 11.294c.772 1.08 1.413 1.973 1.425 1.984.016.017.241.02 1.05.017l1.03-.004-2.694-3.766L7.796 5.75 5.722 2.852l-1.039-.004-1.039-.004z" clip-rule="evenodd"/>
 
+  </symbol>
 
+</svg>

+ 97 - 0
frontend/src/App.vue
Просмотреть файл 

@@ -0,0 +1,97 @@
 
+<template>
 
+  <div id="app">
 
+    <el-container style="min-height: 100vh">
 
+      <el-header class="app-header">
 
+        <div class="header-left">
 
+          <el-icon :size="24"><Link /></el-icon>
 
+          <span class="header-title">AutoSSL 证书管理</span>
 
+        </div>
 
+        <div class="header-right">
 
+          <el-tag type="success" size="small">运行中</el-tag>
 
+        </div>
 
+      </el-header>
 
+      <el-container>
 
+        <el-aside width="200px">
 
+          <el-menu
 
+            :default-active="route.path"
 
+            router
 
+            background-color="#001529"
 
+            text-color="#ffffffb3"
 
+            active-text-color="#fff"
 
+          >
 
+            <el-menu-item index="/">
 
+              <el-icon><HomeFilled /></el-icon>
 
+              <span>仪表盘</span>
 
+            </el-menu-item>
 
+            <el-menu-item index="/certificates">
 
+              <el-icon><Document /></el-icon>
 
+              <span>证书列表</span>
 
+            </el-menu-item>
 
+            <el-menu-item index="/create">
 
+              <el-icon><Plus /></el-icon>
 
+              <span>申请证书</span>
 
+            </el-menu-item>
 
+          </el-menu>
 
+        </el-aside>
 
+        <el-main>
 
+          <router-view />
 
+        </el-main>
 
+      </el-container>
 
+    </el-container>
 
+  </div>
 
+</template>
 
+
 
+<script setup lang="ts">
 
+import { useRoute } from 'vue-router'
 
+const route = useRoute()
 
+</script>
 
+
 
+<style>
 
+* {
 
+  margin: 0;
 
+  padding: 0;
 
+  box-sizing: border-box;
 
+}
 
+
 
+body {
 
+  font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, 'Helvetica Neue', Arial, sans-serif;
 
+  background-color: #f0f2f5;
 
+}
 
+
 
+.app-header {
 
+  display: flex;
 
+  align-items: center;
 
+  justify-content: space-between;
 
+  background: linear-gradient(135deg, #1890ff, #096dd9);
 
+  color: white;
 
+  padding: 0 24px;
 
+  height: 60px;
 
+  box-shadow: 0 2px 8px rgba(0, 0, 0, 0.15);
 
+}
 
+
 
+.header-left {
 
+  display: flex;
 
+  align-items: center;
 
+  gap: 12px;
 
+}
 
+
 
+.header-title {
 
+  font-size: 20px;
 
+  font-weight: 600;
 
+  letter-spacing: 1px;
 
+}
 
+
 
+.el-aside {
 
+  background-color: #001529;
 
+  min-height: calc(100vh - 60px);
 
+}
 
+
 
+.el-menu {
 
+  border-right: none;
 
+}
 
+
 
+.el-main {
 
+  background-color: #f0f2f5;
 
+  padding: 24px;
 
+}
 
+</style>

+ 55 - 0
frontend/src/api/index.ts
Просмотреть файл 

@@ -0,0 +1,55 @@
 
+import axios from 'axios'
 
+
 
+const api = axios.create({
 
+  baseURL: '/api',
 
+  timeout: 60000,
 
+})
 
+
 
+export interface Certificate {
 
+  id: number
 
+  domain: string
 
+  email: string
 
+  provider: string
 
+  challenge_type: string
 
+  dns_provider: string
 
+  dns_config: string
 
+  status: string
 
+  cert_url: string
 
+  expires_at: string | null
 
+  last_renewed_at: string | null
 
+  error_message: string
 
+  auto_renew: boolean
 
+  renew_days: number
 
+  created_at: string
 
+  updated_at: string
 
+}
 
+
 
+export interface Stats {
 
+  total: number
 
+  active: number
 
+  expired: number
 
+  errors: number
 
+}
 
+
 
+export interface CreateCertRequest {
 
+  domain: string
 
+  email: string
 
+  provider?: string
 
+  challenge_type?: string
 
+  dns_provider?: string
 
+  dns_config?: string
 
+  auto_renew?: boolean
 
+  renew_days?: number
 
+}
 
+
 
+export const certApi = {
 
+  list: () => api.get<Certificate[]>('/certificates'),
 
+  get: (id: number) => api.get<Certificate>(`/certificates/${id}`),
 
+  create: (data: CreateCertRequest) => api.post<Certificate>('/certificates', data),
 
+  update: (id: number, data: Partial<Certificate>) => api.put<Certificate>(`/certificates/${id}`, data),
 
+  delete: (id: number) => api.delete(`/certificates/${id}`),
 
+  renew: (id: number) => api.post(`/certificates/${id}/renew`),
 
+  files: (id: number) => api.get(`/certificates/${id}/files`),
 
+  checkRenewals: () => api.get('/renewals/check'),
 
+  stats: () => api.get<Stats>('/stats'),
 
+}

BIN
frontend/src/assets/hero.png
Просмотреть файл


Разница между файлами не показана из-за своего большого размера
+ 0 - 0
frontend/src/assets/vite.svg


+ 1 - 0
frontend/src/assets/vue.svg
Просмотреть файл 

@@ -0,0 +1 @@
 
+<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" aria-hidden="true" role="img" class="iconify iconify--logos" width="37.07" height="36" preserveAspectRatio="xMidYMid meet" viewBox="0 0 256 198"><path fill="#41B883" d="M204.8 0H256L128 220.8L0 0h97.92L128 51.2L157.44 0h47.36Z"></path><path fill="#41B883" d="m0 0l128 220.8L256 0h-51.2L128 132.48L50.56 0H0Z"></path><path fill="#35495E" d="M50.56 0L128 133.12L204.8 0h-47.36L128 51.2L97.92 0H50.56Z"></path></svg>

+ 95 - 0
frontend/src/components/HelloWorld.vue
Просмотреть файл 

@@ -0,0 +1,95 @@
 
+<script setup lang="ts">
 
+import { ref } from 'vue'
 
+import viteLogo from '../assets/vite.svg'
 
+import heroImg from '../assets/hero.png'
 
+import vueLogo from '../assets/vue.svg'
 
+
 
+const count = ref(0)
 
+</script>
 
+
 
+<template>
 
+  <section id="center">
 
+    <div class="hero">
 
+      <img :src="heroImg" class="base" width="170" height="179" alt="" />
 
+      <img :src="vueLogo" class="framework" alt="Vue logo" />
 
+      <img :src="viteLogo" class="vite" alt="Vite logo" />
 
+    </div>
 
+    <div>
 
+      <h1>Get started</h1>
 
+      <p>Edit <code>src/App.vue</code> and save to test <code>HMR</code></p>
 
+    </div>
 
+    <button type="button" class="counter" @click="count++">
 
+      Count is {{ count }}
 
+    </button>
 
+  </section>
 
+
 
+  <div class="ticks"></div>
 
+
 
+  <section id="next-steps">
 
+    <div id="docs">
 
+      <svg class="icon" role="presentation" aria-hidden="true">
 
+        <use href="/icons.svg#documentation-icon"></use>
 
+      </svg>
 
+      <h2>Documentation</h2>
 
+      <p>Your questions, answered</p>
 
+      <ul>
 
+        <li>
 
+          <a href="https://vite.dev/" target="_blank">
 
+            <img class="logo" :src="viteLogo" alt="" />
 
+            Explore Vite
 
+          </a>
 
+        </li>
 
+        <li>
 
+          <a href="https://vuejs.org/" target="_blank">
 
+            <img class="button-icon" :src="vueLogo" alt="" />
 
+            Learn more
 
+          </a>
 
+        </li>
 
+      </ul>
 
+    </div>
 
+    <div id="social">
 
+      <svg class="icon" role="presentation" aria-hidden="true">
 
+        <use href="/icons.svg#social-icon"></use>
 
+      </svg>
 
+      <h2>Connect with us</h2>
 
+      <p>Join the Vite community</p>
 
+      <ul>
 
+        <li>
 
+          <a href="https://github.com/vitejs/vite" target="_blank">
 
+            <svg class="button-icon" role="presentation" aria-hidden="true">
 
+              <use href="/icons.svg#github-icon"></use>
 
+            </svg>
 
+            GitHub
 
+          </a>
 
+        </li>
 
+        <li>
 
+          <a href="https://chat.vite.dev/" target="_blank">
 
+            <svg class="button-icon" role="presentation" aria-hidden="true">
 
+              <use href="/icons.svg#discord-icon"></use>
 
+            </svg>
 
+            Discord
 
+          </a>
 
+        </li>
 
+        <li>
 
+          <a href="https://x.com/vite_js" target="_blank">
 
+            <svg class="button-icon" role="presentation" aria-hidden="true">
 
+              <use href="/icons.svg#x-icon"></use>
 
+            </svg>
 
+            X.com
 
+          </a>
 
+        </li>
 
+        <li>
 
+          <a href="https://bsky.app/profile/vite.dev" target="_blank">
 
+            <svg class="button-icon" role="presentation" aria-hidden="true">
 
+              <use href="/icons.svg#bluesky-icon"></use>
 
+            </svg>
 
+            Bluesky
 
+          </a>
 
+        </li>
 
+      </ul>
 
+    </div>
 
+  </section>
 
+
 
+  <div class="ticks"></div>
 
+  <section id="spacer"></section>
 
+</template>

+ 18 - 0
frontend/src/main.ts
Просмотреть файл 

@@ -0,0 +1,18 @@
 
+import { createApp } from 'vue'
 
+import ElementPlus from 'element-plus'
 
+import 'element-plus/dist/index.css'
 
+import zhCn from 'element-plus/es/locale/lang/zh-cn'
 
+import * as ElementPlusIconsVue from '@element-plus/icons-vue'
 
+import App from './App.vue'
 
+import router from './router'
 
+
 
+const app = createApp(App)
 
+
 
+// Register all Element Plus icons
 
+for (const [key, component] of Object.entries(ElementPlusIconsVue)) {
 
+  app.component(key, component)
 
+}
 
+
 
+app.use(ElementPlus, { locale: zhCn })
 
+app.use(router)
 
+app.mount('#app')

+ 15 - 0
frontend/src/router/index.ts
Просмотреть файл 

@@ -0,0 +1,15 @@
 
+import { createRouter, createWebHistory } from 'vue-router'
 
+import Dashboard from '../views/Dashboard.vue'
 
+import CertList from '../views/CertList.vue'
 
+import CertCreate from '../views/CertCreate.vue'
 
+
 
+const router = createRouter({
 
+  history: createWebHistory(),
 
+  routes: [
 
+    { path: '/', name: 'Dashboard', component: Dashboard },
 
+    { path: '/certificates', name: 'CertList', component: CertList },
 
+    { path: '/create', name: 'CertCreate', component: CertCreate },
 
+  ],
 
+})
 
+
 
+export default router

+ 296 - 0
frontend/src/style.css
Просмотреть файл 

@@ -0,0 +1,296 @@
 
+:root {
 
+  --text: #6b6375;
 
+  --text-h: #08060d;
 
+  --bg: #fff;
 
+  --border: #e5e4e7;
 
+  --code-bg: #f4f3ec;
 
+  --accent: #aa3bff;
 
+  --accent-bg: rgba(170, 59, 255, 0.1);
 
+  --accent-border: rgba(170, 59, 255, 0.5);
 
+  --social-bg: rgba(244, 243, 236, 0.5);
 
+  --shadow:
 
+    rgba(0, 0, 0, 0.1) 0 10px 15px -3px, rgba(0, 0, 0, 0.05) 0 4px 6px -2px;
 
+
 
+  --sans: system-ui, 'Segoe UI', Roboto, sans-serif;
 
+  --heading: system-ui, 'Segoe UI', Roboto, sans-serif;
 
+  --mono: ui-monospace, Consolas, monospace;
 
+
 
+  font: 18px/145% var(--sans);
 
+  letter-spacing: 0.18px;
 
+  color-scheme: light dark;
 
+  color: var(--text);
 
+  background: var(--bg);
 
+  font-synthesis: none;
 
+  text-rendering: optimizeLegibility;
 
+  -webkit-font-smoothing: antialiased;
 
+  -moz-osx-font-smoothing: grayscale;
 
+
 
+  @media (max-width: 1024px) {
 
+    font-size: 16px;
 
+  }
 
+}
 
+
 
+@media (prefers-color-scheme: dark) {
 
+  :root {
 
+    --text: #9ca3af;
 
+    --text-h: #f3f4f6;
 
+    --bg: #16171d;
 
+    --border: #2e303a;
 
+    --code-bg: #1f2028;
 
+    --accent: #c084fc;
 
+    --accent-bg: rgba(192, 132, 252, 0.15);
 
+    --accent-border: rgba(192, 132, 252, 0.5);
 
+    --social-bg: rgba(47, 48, 58, 0.5);
 
+    --shadow:
 
+      rgba(0, 0, 0, 0.4) 0 10px 15px -3px, rgba(0, 0, 0, 0.25) 0 4px 6px -2px;
 
+  }
 
+
 
+  #social .button-icon {
 
+    filter: invert(1) brightness(2);
 
+  }
 
+}
 
+
 
+body {
 
+  margin: 0;
 
+}
 
+
 
+h1,
 
+h2 {
 
+  font-family: var(--heading);
 
+  font-weight: 500;
 
+  color: var(--text-h);
 
+}
 
+
 
+h1 {
 
+  font-size: 56px;
 
+  letter-spacing: -1.68px;
 
+  margin: 32px 0;
 
+  @media (max-width: 1024px) {
 
+    font-size: 36px;
 
+    margin: 20px 0;
 
+  }
 
+}
 
+h2 {
 
+  font-size: 24px;
 
+  line-height: 118%;
 
+  letter-spacing: -0.24px;
 
+  margin: 0 0 8px;
 
+  @media (max-width: 1024px) {
 
+    font-size: 20px;
 
+  }
 
+}
 
+p {
 
+  margin: 0;
 
+}
 
+
 
+code,
 
+.counter {
 
+  font-family: var(--mono);
 
+  display: inline-flex;
 
+  border-radius: 4px;
 
+  color: var(--text-h);
 
+}
 
+
 
+code {
 
+  font-size: 15px;
 
+  line-height: 135%;
 
+  padding: 4px 8px;
 
+  background: var(--code-bg);
 
+}
 
+
 
+.counter {
 
+  font-size: 16px;
 
+  padding: 5px 10px;
 
+  border-radius: 5px;
 
+  color: var(--accent);
 
+  background: var(--accent-bg);
 
+  border: 2px solid transparent;
 
+  transition: border-color 0.3s;
 
+  margin-bottom: 24px;
 
+
 
+  &:hover {
 
+    border-color: var(--accent-border);
 
+  }
 
+  &:focus-visible {
 
+    outline: 2px solid var(--accent);
 
+    outline-offset: 2px;
 
+  }
 
+}
 
+
 
+.hero {
 
+  position: relative;
 
+
 
+  .base,
 
+  .framework,
 
+  .vite {
 
+    inset-inline: 0;
 
+    margin: 0 auto;
 
+  }
 
+
 
+  .base {
 
+    width: 170px;
 
+    position: relative;
 
+    z-index: 0;
 
+  }
 
+
 
+  .framework,
 
+  .vite {
 
+    position: absolute;
 
+  }
 
+
 
+  .framework {
 
+    z-index: 1;
 
+    top: 34px;
 
+    height: 28px;
 
+    transform: perspective(2000px) rotateZ(300deg) rotateX(44deg) rotateY(39deg)
 
+      scale(1.4);
 
+  }
 
+
 
+  .vite {
 
+    z-index: 0;
 
+    top: 107px;
 
+    height: 26px;
 
+    width: auto;
 
+    transform: perspective(2000px) rotateZ(300deg) rotateX(40deg) rotateY(39deg)
 
+      scale(0.8);
 
+  }
 
+}
 
+
 
+#app {
 
+  width: 1126px;
 
+  max-width: 100%;
 
+  margin: 0 auto;
 
+  text-align: center;
 
+  border-inline: 1px solid var(--border);
 
+  min-height: 100svh;
 
+  display: flex;
 
+  flex-direction: column;
 
+  box-sizing: border-box;
 
+}
 
+
 
+#center {
 
+  display: flex;
 
+  flex-direction: column;
 
+  gap: 25px;
 
+  place-content: center;
 
+  place-items: center;
 
+  flex-grow: 1;
 
+
 
+  @media (max-width: 1024px) {
 
+    padding: 32px 20px 24px;
 
+    gap: 18px;
 
+  }
 
+}
 
+
 
+#next-steps {
 
+  display: flex;
 
+  border-top: 1px solid var(--border);
 
+  text-align: left;
 
+
 
+  & > div {
 
+    flex: 1 1 0;
 
+    padding: 32px;
 
+    @media (max-width: 1024px) {
 
+      padding: 24px 20px;
 
+    }
 
+  }
 
+
 
+  .icon {
 
+    margin-bottom: 16px;
 
+    width: 22px;
 
+    height: 22px;
 
+  }
 
+
 
+  @media (max-width: 1024px) {
 
+    flex-direction: column;
 
+    text-align: center;
 
+  }
 
+}
 
+
 
+#docs {
 
+  border-right: 1px solid var(--border);
 
+
 
+  @media (max-width: 1024px) {
 
+    border-right: none;
 
+    border-bottom: 1px solid var(--border);
 
+  }
 
+}
 
+
 
+#next-steps ul {
 
+  list-style: none;
 
+  padding: 0;
 
+  display: flex;
 
+  gap: 8px;
 
+  margin: 32px 0 0;
 
+
 
+  .logo {
 
+    height: 18px;
 
+  }
 
+
 
+  a {
 
+    color: var(--text-h);
 
+    font-size: 16px;
 
+    border-radius: 6px;
 
+    background: var(--social-bg);
 
+    display: flex;
 
+    padding: 6px 12px;
 
+    align-items: center;
 
+    gap: 8px;
 
+    text-decoration: none;
 
+    transition: box-shadow 0.3s;
 
+
 
+    &:hover {
 
+      box-shadow: var(--shadow);
 
+    }
 
+    .button-icon {
 
+      height: 18px;
 
+      width: 18px;
 
+    }
 
+  }
 
+
 
+  @media (max-width: 1024px) {
 
+    margin-top: 20px;
 
+    flex-wrap: wrap;
 
+    justify-content: center;
 
+
 
+    li {
 
+      flex: 1 1 calc(50% - 8px);
 
+    }
 
+
 
+    a {
 
+      width: 100%;
 
+      justify-content: center;
 
+      box-sizing: border-box;
 
+    }
 
+  }
 
+}
 
+
 
+#spacer {
 
+  height: 88px;
 
+  border-top: 1px solid var(--border);
 
+  @media (max-width: 1024px) {
 
+    height: 48px;
 
+  }
 
+}
 
+
 
+.ticks {
 
+  position: relative;
 
+  width: 100%;
 
+
 
+  &::before,
 
+  &::after {
 
+    content: '';
 
+    position: absolute;
 
+    top: -4.5px;
 
+    border: 5px solid transparent;
 
+  }
 
+
 
+  &::before {
 
+    left: 0;
 
+    border-left-color: var(--border);
 
+  }
 
+  &::after {
 
+    right: 0;
 
+    border-right-color: var(--border);
 
+  }
 
+}

+ 167 - 0
frontend/src/views/CertCreate.vue
Просмотреть файл 

@@ -0,0 +1,167 @@
 
+<template>
 
+  <div class="cert-create">
 
+    <h2 class="page-title">申请新证书</h2>
 
+
 
+    <el-card>
 
+      <el-form
 
+        ref="formRef"
 
+        :model="form"
 
+        :rules="rules"
 
+        label-width="140px"
 
+        style="max-width: 600px"
 
+      >
 
+        <el-form-item label="域名" prop="domain">
 
+          <el-input v-model="form.domain" placeholder="example.com" />
 
+        </el-form-item>
 
+
 
+        <el-form-item label="邮箱" prop="email">
 
+          <el-input v-model="form.email" placeholder="admin@example.com" />
 
+        </el-form-item>
 
+
 
+        <el-form-item label="ACME 提供商" prop="provider">
 
+          <el-radio-group v-model="form.provider">
 
+            <el-radio value="letsencrypt">Let's Encrypt</el-radio>
 
+            <el-radio value="zerossl">ZeroSSL</el-radio>
 
+          </el-radio-group>
 
+        </el-form-item>
 
+
 
+        <el-form-item label="验证方式" prop="challenge_type">
 
+          <el-radio-group v-model="form.challenge_type" @change="onChallengeChange">
 
+            <el-radio value="http">HTTP-01(推荐)</el-radio>
 
+            <el-radio value="dns">DNS-01</el-radio>
 
+          </el-radio-group>
 
+        </el-form-item>
 
+
 
+        <el-form-item label="DNS 提供商" v-if="form.challenge_type === 'dns'" prop="dns_provider">
 
+          <el-select v-model="form.dns_provider" placeholder="选择 DNS 提供商" style="width: 100%">
 
+            <el-option label="阿里云 DNS (Aliyun)" value="alidns" />
 
+            <el-option label="Cloudflare" value="cloudflare" />
 
+            <el-option label="DNSPod" value="dnspod" />
 
+          </el-select>
 
+        </el-form-item>
 
+
 
+        <!-- Aliyun DNS Config -->
 
+        <template v-if="form.challenge_type === 'dns' && form.dns_provider === 'alidns'">
 
+          <el-form-item label="AccessKey ID" prop="ali_key">
 
+            <el-input v-model="dnsConfig.ali_key" placeholder="Aliyun AccessKey ID" />
 
+          </el-form-item>
 
+          <el-form-item label="AccessKey Secret" prop="ali_secret">
 
+            <el-input v-model="dnsConfig.ali_secret" type="password" show-password placeholder="Aliyun AccessKey Secret" />
 
+          </el-form-item>
 
+        </template>
 
+
 
+        <!-- Cloudflare Config -->
 
+        <template v-if="form.challenge_type === 'dns' && form.dns_provider === 'cloudflare'">
 
+          <el-form-item label="API Token">
 
+            <el-input v-model="dnsConfig.cf_api_token" type="password" show-password placeholder="Cloudflare API Token" />
 
+          </el-form-item>
 
+        </template>
 
+
 
+        <!-- DNSPod Config -->
 
+        <template v-if="form.challenge_type === 'dns' && form.dns_provider === 'dnspod'">
 
+          <el-form-item label="ID">
 
+            <el-input v-model="dnsConfig.dnspod_id" placeholder="DNSPod ID" />
 
+          </el-form-item>
 
+          <el-form-item label="Key">
 
+            <el-input v-model="dnsConfig.dnspod_key" type="password" show-password placeholder="DNSPod Key" />
 
+          </el-form-item>
 
+        </template>
 
+
 
+        <el-form-item label="自动续期">
 
+          <el-switch v-model="form.auto_renew" />
 
+        </el-form-item>
 
+
 
+        <el-form-item v-if="form.auto_renew" label="提前续期天数">
 
+          <el-input-number v-model="form.renew_days" :min="1" :max="60" />
 
+        </el-form-item>
 
+
 
+        <el-form-item>
 
+          <el-button type="primary" @click="handleSubmit" :loading="submitting">
 
+            <el-icon><Plus /></el-icon> 提交申请
 
+          </el-button>
 
+          <el-button @click="$router.push('/certificates')">取消</el-button>
 
+        </el-form-item>
 
+      </el-form>
 
+    </el-card>
 
+  </div>
 
+</template>
 
+
 
+<script setup lang="ts">
 
+import { ref, reactive } from 'vue'
 
+import { certApi } from '../api'
 
+import { ElMessage } from 'element-plus'
 
+import { useRouter } from 'vue-router'
 
+
 
+const router = useRouter()
 
+const formRef = ref()
 
+const submitting = ref(false)
 
+
 
+const form = reactive({
 
+  domain: '',
 
+  email: '',
 
+  provider: 'letsencrypt',
 
+  challenge_type: 'http',
 
+  dns_provider: 'alidns',
 
+  auto_renew: true,
 
+  renew_days: 30,
 
+})
 
+
 
+const dnsConfig = reactive({
 
+  ali_key: '',
 
+  ali_secret: '',
 
+  cf_api_token: '',
 
+  dnspod_id: '',
 
+  dnspod_key: '',
 
+})
 
+
 
+const rules = {
 
+  domain: [{ required: true, message: '请输入域名', trigger: 'blur' }],
 
+  email: [
 
+    { required: true, message: '请输入邮箱', trigger: 'blur' },
 
+    { type: 'email', message: '邮箱格式不正确', trigger: 'blur' },
 
+  ],
 
+}
 
+
 
+const onChallengeChange = () => {
 
+  // Reset DNS config when switching
 
+  Object.keys(dnsConfig).forEach(k => (dnsConfig as any)[k] = '')
 
+}
 
+
 
+const handleSubmit = async () => {
 
+  const valid = await formRef.value.validate().catch(() => false)
 
+  if (!valid) return
 
+
 
+  submitting.value = true
 
+  try {
 
+    const payload: any = {
 
+      domain: form.domain,
 
+      email: form.email,
 
+      provider: form.provider,
 
+      challenge_type: form.challenge_type,
 
+      auto_renew: form.auto_renew,
 
+      renew_days: form.renew_days,
 
+    }
 
+
 
+    if (form.challenge_type === 'dns') {
 
+      payload.dns_provider = form.dns_provider
 
+      payload.dns_config = JSON.stringify(dnsConfig)
 
+    }
 
+
 
+    await certApi.create(payload)
 
+    ElMessage.success(`证书申请已提交,后台处理中`)
 
+    router.push('/certificates')
 
+  } catch (e: any) {
 
+    ElMessage.error('提交失败: ' + (e.response?.data?.error || e.message))
 
+  } finally {
 
+    submitting.value = false
 
+  }
 
+}
 
+</script>
 
+
 
+<style scoped>
 
+.page-title {
 
+  margin-bottom: 20px;
 
+  font-size: 24px;
 
+  color: #1a1a2e;
 
+}
 
+</style>

+ 220 - 0
frontend/src/views/CertList.vue
Просмотреть файл 

@@ -0,0 +1,220 @@
 
+<template>
 
+  <div class="cert-list">
 
+    <div class="page-header">
 
+      <h2 class="page-title">证书列表</h2>
 
+      <el-button type="primary" @click="$router.push('/create')">
 
+        <el-icon><Plus /></el-icon> 申请证书
 
+      </el-button>
 
+    </div>
 
+
 
+    <el-card>
 
+      <el-table :data="certs" stripe style="width: 100%" v-loading="loading">
 
+        <el-table-column type="index" label="#" width="50" />
 
+        <el-table-column prop="domain" label="域名" min-width="200" />
 
+        <el-table-column label="提供商" width="120">
 
+          <template #default="{ row }">
 
+            <el-tag :type="row.provider === 'zerossl' ? 'warning' : 'success'" size="small">
 
+              {{ row.provider === 'zerossl' ? 'ZeroSSL' : 'Let\'s Encrypt' }}
 
+            </el-tag>
 
+          </template>
 
+        </el-table-column>
 
+        <el-table-column label="验证方式" width="90">
 
+          <template #default="{ row }">
 
+            {{ row.challenge_type === 'dns' ? 'DNS-01' : 'HTTP-01' }}
 
+          </template>
 
+        </el-table-column>
 
+        <el-table-column label="自动续期" width="90">
 
+          <template #default="{ row }">
 
+            <el-switch
 
+              :model-value="row.auto_renew"
 
+              @change="(v: boolean) => toggleAutoRenew(row, v)"
 
+              size="small"
 
+            />
 
+          </template>
 
+        </el-table-column>
 
+        <el-table-column prop="status" label="状态" width="100">
 
+          <template #default="{ row }">
 
+            <el-tag :type="statusType(row.status)" size="small">
 
+              {{ statusLabel(row.status) }}
 
+            </el-tag>
 
+          </template>
 
+        </el-table-column>
 
+        <el-table-column prop="expires_at" label="过期时间" width="180">
 
+          <template #default="{ row }">
 
+            <span v-if="row.expires_at" :class="{ expired: isExpired(row.expires_at) }">
 
+              {{ formatDate(row.expires_at) }}
 
+            </span>
 
+            <span v-else>-</span>
 
+          </template>
 
+        </el-table-column>
 
+        <el-table-column prop="error_message" label="错误信息" min-width="150">
 
+          <template #default="{ row }">
 
+            <el-tooltip v-if="row.error_message" :content="row.error_message" placement="top">
 
+              <el-tag type="danger" size="small" effect="dark">错误</el-tag>
 
+            </el-tooltip>
 
+          </template>
 
+        </el-table-column>
 
+        <el-table-column label="操作" width="250" fixed="right">
 
+          <template #default="{ row }">
 
+            <el-button size="small" @click="viewFiles(row)">查看证书</el-button>
 
+            <el-button size="small" type="primary" :loading="renewingId === row.id" @click="handleRenew(row)">
 
+              续期
 
+            </el-button>
 
+            <el-popconfirm title="确定删除此证书?" @confirm="handleDelete(row)">
 
+              <template #reference>
 
+                <el-button size="small" type="danger">删除</el-button>
 
+              </template>
 
+            </el-popconfirm>
 
+          </template>
 
+        </el-table-column>
 
+      </el-table>
 
+    </el-card>
 
+
 
+    <!-- Certificate File Dialog -->
 
+    <el-dialog v-model="dialogVisible" title="证书文件" width="720px">
 
+      <template v-if="certFiles">
 
+        <div class="cert-file-section">
 
+          <h4>Fullchain 证书</h4>
 
+          <el-input type="textarea" :rows="6" :model-value="certFiles.fullchain" readonly />
 
+        </div>
 
+        <div class="cert-file-section">
 
+          <h4>私钥</h4>
 
+          <el-input type="textarea" :rows="6" :model-value="certFiles.privkey" readonly />
 
+        </div>
 
+      </template>
 
+      <div v-else style="text-align: center; padding: 40px; color: #999;">
 
+        证书文件生成后即可查看
 
+      </div>
 
+      <template #footer>
 
+        <el-button @click="dialogVisible = false">关闭</el-button>
 
+      </template>
 
+    </el-dialog>
 
+  </div>
 
+</template>
 
+
 
+<script setup lang="ts">
 
+import { ref, onMounted } from 'vue'
 
+import { certApi, type Certificate } from '../api'
 
+import { ElMessage } from 'element-plus'
 
+
 
+const certs = ref<Certificate[]>([])
 
+const loading = ref(false)
 
+const renewingId = ref<number | null>(null)
 
+const dialogVisible = ref(false)
 
+const certFiles = ref<any>(null)
 
+
 
+const loadCerts = async () => {
 
+  loading.value = true
 
+  try {
 
+    const res = await certApi.list()
 
+    certs.value = res.data
 
+  } catch (e: any) {
 
+    ElMessage.error('加载证书列表失败: ' + (e.response?.data?.error || e.message))
 
+  } finally {
 
+    loading.value = false
 
+  }
 
+}
 
+
 
+const handleRenew = async (cert: Certificate) => {
 
+  renewingId.value = cert.id
 
+  try {
 
+    await certApi.renew(cert.id)
 
+    ElMessage.success(`证书 ${cert.domain} 续期已开始`)
 
+    setTimeout(loadCerts, 2000)
 
+  } catch (e: any) {
 
+    ElMessage.error('续期失败: ' + (e.response?.data?.error || e.message))
 
+  } finally {
 
+    renewingId.value = null
 
+  }
 
+}
 
+
 
+const handleDelete = async (cert: Certificate) => {
 
+  try {
 
+    await certApi.delete(cert.id)
 
+    ElMessage.success(`证书 ${cert.domain} 已删除`)
 
+    loadCerts()
 
+  } catch (e: any) {
 
+    ElMessage.error('删除失败: ' + (e.response?.data?.error || e.message))
 
+  }
 
+}
 
+
 
+const toggleAutoRenew = async (cert: Certificate, val: boolean) => {
 
+  try {
 
+    await certApi.update(cert.id, { auto_renew: val } as any)
 
+    ElMessage.success(val ? '已开启自动续期' : '已关闭自动续期')
 
+  } catch (e: any) {
 
+    ElMessage.error('更新失败')
 
+  }
 
+}
 
+
 
+const viewFiles = async (cert: Certificate) => {
 
+  try {
 
+    const res = await certApi.files(cert.id)
 
+    certFiles.value = res.data
 
+    dialogVisible.value = true
 
+  } catch (e: any) {
 
+    ElMessage.error('获取证书文件失败: ' + (e.response?.data?.error || e.message))
 
+  }
 
+}
 
+
 
+const statusType = (s: string) => {
 
+  switch (s) {
 
+    case 'active': return 'success'
 
+    case 'renewing': case 'pending': return 'warning'
 
+    case 'expired': return 'info'
 
+    case 'error': return 'danger'
 
+    default: return 'info'
 
+  }
 
+}
 
+
 
+const statusLabel = (s: string) => {
 
+  switch (s) {
 
+    case 'active': return '有效'
 
+    case 'renewing': return '续期中'
 
+    case 'pending': return '申请中'
 
+    case 'expired': return '已过期'
 
+    case 'error': return '错误'
 
+    default: return s
 
+  }
 
+}
 
+
 
+const formatDate = (d: string) => {
 
+  const date = new Date(d)
 
+  return date.toLocaleDateString('zh-CN')
 
+}
 
+
 
+const isExpired = (d: string) => {
 
+  return new Date(d) < new Date()
 
+}
 
+
 
+onMounted(loadCerts)
 
+</script>
 
+
 
+<style scoped>
 
+.page-header {
 
+  display: flex;
 
+  justify-content: space-between;
 
+  align-items: center;
 
+  margin-bottom: 20px;
 
+}
 
+
 
+.page-title {
 
+  font-size: 24px;
 
+  color: #1a1a2e;
 
+  margin: 0;
 
+}
 
+
 
+.expired {
 
+  color: #f56c6c;
 
+  font-weight: 600;
 
+}
 
+
 
+.cert-file-section {
 
+  margin-bottom: 16px;
 
+}
 
+
 
+.cert-file-section h4 {
 
+  margin-bottom: 8px;
 
+  color: #333;
 
+}
 
+</style>

+ 161 - 0
frontend/src/views/Dashboard.vue
Просмотреть файл 

@@ -0,0 +1,161 @@
 
+<template>
 
+  <div class="dashboard">
 
+    <h2 class="page-title">仪表盘</h2>
 
+
 
+    <el-row :gutter="20" class="stat-cards">
 
+      <el-col :span="6">
 
+        <el-card shadow="hover" class="stat-card total">
 
+          <div class="stat-value">{{ stats.total }}</div>
 
+          <div class="stat-label">总证书数</div>
 
+        </el-card>
 
+      </el-col>
 
+      <el-col :span="6">
 
+        <el-card shadow="hover" class="stat-card active">
 
+          <div class="stat-value">{{ stats.active }}</div>
 
+          <div class="stat-label">有效证书</div>
 
+        </el-card>
 
+      </el-col>
 
+      <el-col :span="6">
 
+        <el-card shadow="hover" class="stat-card expired">
 
+          <div class="stat-value">{{ stats.expired }}</div>
 
+          <div class="stat-label">已过期</div>
 
+        </el-card>
 
+      </el-col>
 
+      <el-col :span="6">
 
+        <el-card shadow="hover" class="stat-card error">
 
+          <div class="stat-value">{{ stats.errors }}</div>
 
+          <div class="stat-label">错误</div>
 
+        </el-card>
 
+      </el-col>
 
+    </el-row>
 
+
 
+    <el-card class="recent-certs" style="margin-top: 24px">
 
+      <template #header>
 
+        <div class="card-header">
 
+          <span>最近证书</span>
 
+          <el-button text type="primary" @click="$router.push('/certificates')">查看全部</el-button>
 
+        </div>
 
+      </template>
 
+      <el-table :data="certs.slice(0, 5)" stripe style="width: 100%">
 
+        <el-table-column prop="domain" label="域名" min-width="200" />
 
+        <el-table-column prop="provider" label="提供商" width="120">
 
+          <template #default="{ row }">
 
+            <el-tag :type="row.provider === 'zerossl' ? 'warning' : 'success'" size="small">
 
+              {{ row.provider === 'zerossl' ? 'ZeroSSL' : 'Let\'s Encrypt' }}
 
+            </el-tag>
 
+          </template>
 
+        </el-table-column>
 
+        <el-table-column prop="challenge_type" label="验证方式" width="100">
 
+          <template #default="{ row }">
 
+            {{ row.challenge_type === 'dns' ? 'DNS-01' : 'HTTP-01' }}
 
+          </template>
 
+        </el-table-column>
 
+        <el-table-column prop="status" label="状态" width="100">
 
+          <template #default="{ row }">
 
+            <el-tag :type="statusType(row.status)" size="small">
 
+              {{ statusLabel(row.status) }}
 
+            </el-tag>
 
+          </template>
 
+        </el-table-column>
 
+        <el-table-column prop="expires_at" label="过期时间" width="180">
 
+          <template #default="{ row }">
 
+            {{ row.expires_at ? formatDate(row.expires_at) : '-' }}
 
+          </template>
 
+        </el-table-column>
 
+      </el-table>
 
+    </el-card>
 
+  </div>
 
+</template>
 
+
 
+<script setup lang="ts">
 
+import { ref, onMounted } from 'vue'
 
+import { certApi, type Certificate, type Stats } from '../api'
 
+
 
+const stats = ref<Stats>({ total: 0, active: 0, expired: 0, errors: 0 })
 
+const certs = ref<Certificate[]>([])
 
+
 
+const loadData = async () => {
 
+  try {
 
+    const [statsRes, certsRes] = await Promise.all([
 
+      certApi.stats(),
 
+      certApi.list(),
 
+    ])
 
+    stats.value = statsRes.data
 
+    certs.value = certsRes.data
 
+  } catch (e) {
 
+    console.error('Failed to load data', e)
 
+  }
 
+}
 
+
 
+const statusType = (s: string) => {
 
+  switch (s) {
 
+    case 'active': return 'success'
 
+    case 'renewing':
 
+    case 'pending': return 'warning'
 
+    case 'expired': return 'info'
 
+    case 'error': return 'danger'
 
+    default: return 'info'
 
+  }
 
+}
 
+
 
+const statusLabel = (s: string) => {
 
+  switch (s) {
 
+    case 'active': return '有效'
 
+    case 'renewing': return '续期中'
 
+    case 'pending': return '申请中'
 
+    case 'expired': return '已过期'
 
+    case 'error': return '错误'
 
+    default: return s
 
+  }
 
+}
 
+
 
+const formatDate = (d: string) => {
 
+  const date = new Date(d)
 
+  return date.toLocaleDateString('zh-CN') + ' ' + date.toLocaleTimeString('zh-CN', { hour: '2-digit', minute: '2-digit' })
 
+}
 
+
 
+onMounted(loadData)
 
+</script>
 
+
 
+<style scoped>
 
+.page-title {
 
+  margin-bottom: 20px;
 
+  font-size: 24px;
 
+  color: #1a1a2e;
 
+}
 
+
 
+.stat-cards {
 
+  margin-bottom: 0;
 
+}
 
+
 
+.stat-card {
 
+  text-align: center;
 
+  border-radius: 8px;
 
+}
 
+
 
+.stat-card :deep(.el-card__body) {
 
+  padding: 24px;
 
+}
 
+
 
+.stat-value {
 
+  font-size: 36px;
 
+  font-weight: 700;
 
+  margin-bottom: 8px;
 
+}
 
+
 
+.stat-label {
 
+  font-size: 14px;
 
+  color: #666;
 
+}
 
+
 
+.stat-card.total .stat-value { color: #1890ff; }
 
+.stat-card.active .stat-value { color: #52c41a; }
 
+.stat-card.expired .stat-value { color: #909399; }
 
+.stat-card.error .stat-value { color: #f56c6c; }
 
+
 
+.card-header {
 
+  display: flex;
 
+  justify-content: space-between;
 
+  align-items: center;
 
+}
 
+</style>

+ 7 - 0
frontend/vite.config.ts
Просмотреть файл 

@@ -0,0 +1,7 @@
 
+import { defineConfig } from 'vite'
 
+import vue from '@vitejs/plugin-vue'
 
+
 
+// https://vite.dev/config/
 
+export default defineConfig({
 
+  plugins: [vue()],
 
+})

Некоторые файлы не были показаны из-за большого количества измененных файлов