AI-Agent/Auto-ssl
1
0
Fork 0
Code Issues Pull Requests Activity

feat: AutoSSL certificate management tool with Web UI

Browse Source
This commit is contained in:
cnbugs
2026-05-12 14:55:10 +08:00
commit 1775d4b4fc
28 changed files with 2357 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Dockerfile
+26
View File
@@ -0,0 +1,26 @@
# AutoSSL Backend
FROM golang:1.23-alpine AS backend-builder
WORKDIR /build
COPY backend/go.mod backend/go.sum ./
RUN go mod download
COPY backend/ .
RUN CGO_ENABLED=1 GOOS=linux go build -o /build/autossl .
# Frontend
FROM node:23-alpine AS frontend-builder
WORKDIR /build
COPY frontend/package.json frontend/package-lock.json ./
RUN npm ci
COPY frontend/ .
RUN npm run build
# Final image
FROM alpine:3.20
RUN apk add --no-cache ca-certificates tzdata
WORKDIR /app
COPY --from=backend-builder /build/autossl .
COPY --from=frontend-builder /build/dist ./dist
VOLUME ["/app/data"]
EXPOSE 8080 80
ENV TZ=Asia/Shanghai
CMD ["./autossl"]
README.md
+64
View File
@@ -0,0 +1,64 @@
# AutoSSL - 自动 SSL 证书管理工具
基于 Go 开发的 ACME 自动 SSL 证书申请与管理工具,提供 Web 管理界面。
## 功能
- ✅ 自动申请 SSL 证书(Let's Encrypt / ZeroSSL
- ✅ 自动续期(每天凌晨 3 点自动检查并续期)
- ✅ HTTP-01(端口 80)和 DNS-01 验证方式
- ✅ 支持阿里云 DNS / Cloudflare / DNSPod
- ✅ Web 管理界面(仪表盘、证书列表、申请、查看、续期、删除)
- ✅ SQLite 数据存储
- ✅ Docker 一键部署
## 快速开始
### Docker 部署
```bash
git clone <your-repo-url> autossl
cd autossl
docker compose up -d
```
访问 http://localhost:8080
### 直接运行
```bash
# 编译
cd backend && go build -o autossl .
# 运行(默认端口 8080
./autossl
```
## 环境变量
| 变量 | 默认值 | 说明 |
|------|--------|------|
| PORT | 8080 | Web 服务端口 |
| DB_PATH | ./data/autossl.db | SQLite 数据库路径 |
| CERT_DIR | ./data/certs | 证书文件存储目录 |
| ACCOUNTS_DIR | ./data/accounts | ACME 账号存储目录 |
## API 接口
| 方法 | 路径 | 说明 |
|------|------|------|
| GET | /api/stats | 统计信息 |
| GET | /api/certificates | 证书列表 |
| GET | /api/certificates/:id | 证书详情 |
| POST | /api/certificates | 申请证书 |
| PUT | /api/certificates/:id | 更新证书配置 |
| DELETE | /api/certificates/:id | 删除证书 |
| POST | /api/certificates/:id/renew | 手动续期 |
| GET | /api/certificates/:id/files | 查看证书文件 |
| GET | /api/renewals/check | 触发续期检查 |
## 证书文件位置
申请成功后的证书文件存储在 `./data/certs/<domain>/` 目录:
- `fullchain.pem` - 完整证书链
- `privkey.pem` - 私钥
- `chain.pem` - CA 证书链
backend/config/certificate.go
+33
View File
@@ -0,0 +1,33 @@
package config
import (
"time"
"gorm.io/gorm"
)
type Certificate struct {
ID uint `gorm:"primarykey" json:"id"`
CreatedAt time.Time `json:"created_at"`
UpdatedAt time.Time `json:"updated_at"`
DeletedAt gorm.DeletedAt `gorm:"index" json:"deleted_at,omitempty"`
Domain string `json:"domain" gorm:"uniqueIndex;size:255"`
Email string `json:"email" gorm:"size:255"`
Provider string `json:"provider" gorm:"size:50;default:letsencrypt"` // letsencrypt, zerossl
ChallengeType string `json:"challenge_type" gorm:"size:20;default:http"` // http, dns
DNSProvider string `json:"dns_provider,omitempty" gorm:"size:50"` // alidns, cloudflare, etc.
DNSConfig string `json:"dns_config,omitempty" gorm:"type:text"` // JSON config for DNS provider
Status string `json:"status" gorm:"size:20;default:pending"` // pending, active, expired, error
CertURL string `json:"cert_url,omitempty" gorm:"size:512"`
ExpiresAt *time.Time `json:"expires_at,omitempty"`
LastRenewedAt *time.Time `json:"last_renewed_at,omitempty"`
ErrorMessage string `json:"error_message,omitempty" gorm:"type:text"`
// Auto renew settings
AutoRenew bool `json:"auto_renew" gorm:"default:true"`
RenewDays int `json:"renew_days" gorm:"default:30"` // Renew when expires within this many days
// ACME account key
AccountKeyID uint `json:"account_key_id,omitempty"`
}
backend/config/config.go
+69
View File
@@ -0,0 +1,69 @@
package config
import (
"gorm.io/driver/sqlite"
"gorm.io/gorm"
"gorm.io/gorm/logger"
"log"
"os"
)
var DB *gorm.DB
type Config struct {
Port string
DBPath string
CertDir string
AccountsDir string
}
func Load() *Config {
port := os.Getenv("PORT")
if port == "" {
port = "8080"
}
dbPath := os.Getenv("DB_PATH")
if dbPath == "" {
dbPath = "./data/autossl.db"
}
certDir := os.Getenv("CERT_DIR")
if certDir == "" {
certDir = "./data/certs"
}
accountsDir := os.Getenv("ACCOUNTS_DIR")
if accountsDir == "" {
accountsDir = "./data/accounts"
}
return &Config{
Port: port,
DBPath: dbPath,
CertDir: certDir,
AccountsDir: accountsDir,
}
}
func InitDB(cfg *Config) {
// Ensure data directories exist
dirs := []string{"./data", cfg.CertDir, cfg.AccountsDir}
for _, d := range dirs {
if err := os.MkdirAll(d, 0700); err != nil {
log.Fatalf("Failed to create directory %s: %v", d, err)
}
}
var err error
DB, err = gorm.Open(sqlite.Open(cfg.DBPath), &gorm.Config{
Logger: logger.Default.LogMode(logger.Warn),
})
if err != nil {
log.Fatalf("Failed to connect database: %v", err)
}
// Auto migrate
if err := DB.AutoMigrate(&Certificate{}); err != nil {
log.Fatalf("Failed to migrate database: %v", err)
}
log.Println("Database initialized successfully")
}
backend/go.mod
+57
View File
@@ -0,0 +1,57 @@
module auto-ssl
go 1.21
require (
github.com/gin-contrib/cors v1.5.0
github.com/gin-gonic/gin v1.9.1
github.com/go-acme/lego/v4 v4.14.2
github.com/robfig/cron/v3 v3.0.1
gorm.io/driver/sqlite v1.5.4
gorm.io/gorm v1.25.5
)
require (
github.com/aliyun/alibaba-cloud-sdk-go v1.61.1755 // indirect
github.com/bytedance/sonic v1.10.1 // indirect
github.com/cenkalti/backoff/v4 v4.2.1 // indirect
github.com/chenzhuoyu/base64x v0.0.0-20230717121745-296ad89f973d // indirect
github.com/chenzhuoyu/iasm v0.9.0 // indirect
github.com/cloudflare/cloudflare-go v0.70.0 // indirect
github.com/gabriel-vasile/mimetype v1.4.2 // indirect
github.com/gin-contrib/sse v0.1.0 // indirect
github.com/go-jose/go-jose/v3 v3.0.0 // indirect
github.com/go-playground/locales v0.14.1 // indirect
github.com/go-playground/universal-translator v0.18.1 // indirect
github.com/go-playground/validator/v10 v10.15.5 // indirect
github.com/goccy/go-json v0.10.2 // indirect
github.com/google/go-querystring v1.1.0 // indirect
github.com/hashicorp/go-cleanhttp v0.5.2 // indirect
github.com/hashicorp/go-retryablehttp v0.7.4 // indirect
github.com/jinzhu/inflection v1.0.0 // indirect
github.com/jinzhu/now v1.1.5 // indirect
github.com/jmespath/go-jmespath v0.4.0 // indirect
github.com/json-iterator/go v1.1.12 // indirect
github.com/klauspost/cpuid/v2 v2.2.5 // indirect
github.com/leodido/go-urn v1.2.4 // indirect
github.com/mattn/go-isatty v0.0.19 // indirect
github.com/mattn/go-sqlite3 v1.14.17 // indirect
github.com/miekg/dns v1.1.55 // indirect
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
github.com/modern-go/reflect2 v1.0.2 // indirect
github.com/nrdcg/dnspod-go v0.4.0 // indirect
github.com/pelletier/go-toml/v2 v2.1.0 // indirect
github.com/twitchyliquid64/golang-asm v0.15.1 // indirect
github.com/ugorji/go/codec v1.2.11 // indirect
golang.org/x/arch v0.5.0 // indirect
golang.org/x/crypto v0.14.0 // indirect
golang.org/x/mod v0.11.0 // indirect
golang.org/x/net v0.16.0 // indirect
golang.org/x/sys v0.13.0 // indirect
golang.org/x/text v0.13.0 // indirect
golang.org/x/time v0.3.0 // indirect
golang.org/x/tools v0.10.0 // indirect
google.golang.org/protobuf v1.31.0 // indirect
gopkg.in/ini.v1 v1.67.0 // indirect
gopkg.in/yaml.v3 v3.0.1 // indirect
)
backend/go.sum
+176
View File
@@ -0,0 +1,176 @@
github.com/aliyun/alibaba-cloud-sdk-go v1.61.1755 h1:J45/QHgrzUdqe/Vco/Vxk0wRvdS2nKUxmf/zLgvfass=
github.com/aliyun/alibaba-cloud-sdk-go v1.61.1755/go.mod h1:RcDobYh8k5VP6TNybz9m++gL3ijVI5wueVr0EM10VsU=
github.com/bytedance/sonic v1.5.0/go.mod h1:ED5hyg4y6t3/9Ku1R6dU/4KyJ48DZ4jPhfY1O2AihPM=
github.com/bytedance/sonic v1.10.0-rc/go.mod h1:ElCzW+ufi8qKqNW0FY314xriJhyJhuoJ3gFZdAHF7NM=
github.com/bytedance/sonic v1.10.1 h1:7a1wuFXL1cMy7a3f7/VFcEtriuXQnUBhtoVfOZiaysc=
github.com/bytedance/sonic v1.10.1/go.mod h1:iZcSUejdk5aukTND/Eu/ivjQuEL0Cu9/rf50Hi0u/g4=
github.com/cenkalti/backoff/v4 v4.2.1 h1:y4OZtCnogmCPw98Zjyt5a6+QwPLGkiQsYW5oUqylYbM=
github.com/cenkalti/backoff/v4 v4.2.1/go.mod h1:Y3VNntkOUPxTVeUxJ/G5vcM//AlwfmyYozVcomhLiZE=
github.com/chenzhuoyu/base64x v0.0.0-20211019084208-fb5309c8db06/go.mod h1:DH46F32mSOjUmXrMHnKwZdA8wcEefY7UVqBKYGjpdQY=
github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311/go.mod h1:b583jCggY9gE99b6G5LEC39OIiVsWj+R97kbl5odCEk=
github.com/chenzhuoyu/base64x v0.0.0-20230717121745-296ad89f973d h1:77cEq6EriyTZ0g/qfRdp61a3Uu/AWrgIq2s0ClJV1g0=
github.com/chenzhuoyu/base64x v0.0.0-20230717121745-296ad89f973d/go.mod h1:8EPpVsBuRksnlj1mLy4AWzRNQYxauNi62uWcE3to6eA=
github.com/chenzhuoyu/iasm v0.9.0 h1:9fhXjVzq5hUy2gkhhgHl95zG2cEAhw9OSGs8toWWAwo=
github.com/chenzhuoyu/iasm v0.9.0/go.mod h1:Xjy2NpN3h7aUqeqM+woSuuvxmIe6+DDsiNLIrkAmYog=
github.com/cloudflare/cloudflare-go v0.70.0 h1:4opGbUygM8DjirUuaz23jn3akuAcnOCEx+0nQtQEcFo=
github.com/cloudflare/cloudflare-go v0.70.0/go.mod h1:VW6GuazkaZ4xEDkFt24lkXQUsE8q7BiGqDniC2s8WEM=
github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
github.com/fatih/color v1.13.0 h1:8LOYc1KYPPmyKMuN8QV2DNRWNbLo6LZ0iLs8+mlH53w=
github.com/fatih/color v1.13.0/go.mod h1:kLAiJbzzSOZDVNGyDpeOxJ47H46qBXwg5ILebYFFOfk=
github.com/gabriel-vasile/mimetype v1.4.2 h1:w5qFW6JKBz9Y393Y4q372O9A7cUSequkh1Q7OhCmWKU=
github.com/gabriel-vasile/mimetype v1.4.2/go.mod h1:zApsH/mKG4w07erKIaJPFiX0Tsq9BFQgN3qGY5GnNgA=
github.com/gin-contrib/cors v1.5.0 h1:DgGKV7DDoOn36DFkNtbHrjoRiT5ExCe+PC9/xp7aKvk=
github.com/gin-contrib/cors v1.5.0/go.mod h1:TvU7MAZ3EwrPLI2ztzTt3tqgvBCq+wn8WpZmfADjupI=
github.com/gin-contrib/sse v0.1.0 h1:Y/yl/+YNO8GZSjAhjMsSuLt29uWRFHdHYUb5lYOV9qE=
github.com/gin-contrib/sse v0.1.0/go.mod h1:RHrZQHXnP2xjPF+u1gW/2HnVO7nvIa9PG3Gm+fLHvGI=
github.com/gin-gonic/gin v1.9.1 h1:4idEAncQnU5cB7BeOkPtxjfCSye0AAm1R0RVIqJ+Jmg=
github.com/gin-gonic/gin v1.9.1/go.mod h1:hPrL7YrpYKXt5YId3A/Tnip5kqbEAP+KLuI3SUcPTeU=
github.com/go-acme/lego/v4 v4.14.2 h1:/D/jqRgLi8Cbk33sLGtu2pX2jEg3bGJWHyV8kFuUHGM=
github.com/go-acme/lego/v4 v4.14.2/go.mod h1:kBXxbeTg0x9AgaOYjPSwIeJy3Y33zTz+tMD16O4MO6c=
github.com/go-jose/go-jose/v3 v3.0.0 h1:s6rrhirfEP/CGIoc6p+PZAeogN2SxKav6Wp7+dyMWVo=
github.com/go-jose/go-jose/v3 v3.0.0/go.mod h1:RNkWWRld676jZEYoV3+XK8L2ZnNSvIsxFMht0mSX+u8=
github.com/go-playground/assert/v2 v2.2.0 h1:JvknZsQTYeFEAhQwI4qEt9cyV5ONwRHC+lYKSsYSR8s=
github.com/go-playground/assert/v2 v2.2.0/go.mod h1:VDjEfimB/XKnb+ZQfWdccd7VUvScMdVu0Titje2rxJ4=
github.com/go-playground/locales v0.14.1 h1:EWaQ/wswjilfKLTECiXz7Rh+3BjFhfDFKv/oXslEjJA=
github.com/go-playground/locales v0.14.1/go.mod h1:hxrqLVvrK65+Rwrd5Fc6F2O76J/NuW9t0sjnWqG1slY=
github.com/go-playground/universal-translator v0.18.1 h1:Bcnm0ZwsGyWbCzImXv+pAJnYK9S473LQFuzCbDbfSFY=
github.com/go-playground/universal-translator v0.18.1/go.mod h1:xekY+UJKNuX9WP91TpwSH2VMlDf28Uj24BCp08ZFTUY=
github.com/go-playground/validator/v10 v10.15.5 h1:LEBecTWb/1j5TNY1YYG2RcOUN3R7NLylN+x8TTueE24=
github.com/go-playground/validator/v10 v10.15.5/go.mod h1:9iXMNT7sEkjXb0I+enO7QXmzG6QCsPWY4zveKFVRSyU=
github.com/goccy/go-json v0.10.2 h1:CrxCmQqYDkv1z7lO7Wbh2HN93uovUHgrECaO5ZrCXAU=
github.com/goccy/go-json v0.10.2/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
github.com/goji/httpauth v0.0.0-20160601135302-2da839ab0f4d/go.mod h1:nnjvkQ9ptGaCkuDUx6wNykzzlUixGxvkme+H/lnzb+A=
github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
github.com/google/go-cmp v0.5.8 h1:e6P7q2lk1O+qJJb4BtCQXlK8vWEO8V1ZeuEdJNOqZyg=
github.com/google/go-cmp v0.5.8/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
github.com/google/go-querystring v1.1.0 h1:AnCroh3fv4ZBgVIf1Iwtovgjaw/GiKJo8M8yD/fhyJ8=
github.com/google/go-querystring v1.1.0/go.mod h1:Kcdr2DB4koayq7X8pmAG4sNG59So17icRSOU623lUBU=
github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
github.com/hashicorp/go-cleanhttp v0.5.2 h1:035FKYIWjmULyFRBKPs8TBQoi0x6d9G4xc9neXJWAZQ=
github.com/hashicorp/go-cleanhttp v0.5.2/go.mod h1:kO/YDlP8L1346E6Sodw+PrpBSV4/SoxCXGY6BqNFT48=
github.com/hashicorp/go-hclog v0.9.2/go.mod h1:5CU+agLiy3J7N7QjHK5d05KxGsuXiQLrjA0H7acj2lQ=
github.com/hashicorp/go-hclog v1.2.0 h1:La19f8d7WIlm4ogzNHB0JGqs5AUDAZ2UfCY4sJXcJdM=
github.com/hashicorp/go-hclog v1.2.0/go.mod h1:whpDNt7SSdeAju8AWKIWsul05p54N/39EeqMAyrmvFQ=
github.com/hashicorp/go-retryablehttp v0.7.4 h1:ZQgVdpTdAL7WpMIwLzCfbalOcSUdkDZnpUv3/+BxzFA=
github.com/hashicorp/go-retryablehttp v0.7.4/go.mod h1:Jy/gPYAdjqffZ/yFGCFV2doI5wjtH1ewM9u8iYVjtX8=
github.com/jinzhu/inflection v1.0.0 h1:K317FqzuhWc8YvSVlFMCCUb36O/S9MCKRDI7QkRKD/E=
github.com/jinzhu/inflection v1.0.0/go.mod h1:h+uFLlag+Qp1Va5pdKtLDYj+kHp5pxUVkryuEj+Srlc=
github.com/jinzhu/now v1.1.5 h1:/o9tlHleP7gOFmsnYNz3RGnqzefHA47wQpKrrdTIwXQ=
github.com/jinzhu/now v1.1.5/go.mod h1:d3SSVoowX0Lcu0IBviAWJpolVfI5UJVZZ7cO71lE/z8=
github.com/jmespath/go-jmespath v0.0.0-20180206201540-c2b33e8439af/go.mod h1:Nht3zPeWKUH0NzdCt2Blrr5ys8VGpn0CEB0cQHVjt7k=
github.com/jmespath/go-jmespath v0.4.0 h1:BEgLn5cpjn8UN1mAw4NjwDrS35OdebyEtFe+9YPoQUg=
github.com/jmespath/go-jmespath v0.4.0/go.mod h1:T8mJZnbsbmF+m6zOOFylbeCJqk5+pHWvzYPziyZiYoo=
github.com/jmespath/go-jmespath/internal/testify v1.5.1 h1:shLQSRRSCCPj3f2gpwzGwWFoC7ycTf1rcQZHOlsJ6N8=
github.com/jmespath/go-jmespath/internal/testify v1.5.1/go.mod h1:L3OGu8Wl2/fWfCI6z80xFu9LTZmf1ZRjMHUOPmWr69U=
github.com/json-iterator/go v1.1.5/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
github.com/klauspost/cpuid/v2 v2.2.5 h1:0E5MSMDEoAulmXNFquVs//DdoomxaoTY1kUhbc/qbZg=
github.com/klauspost/cpuid/v2 v2.2.5/go.mod h1:Lcz8mBdAVJIBVzewtcLocK12l3Y+JytZYpaMropDUws=
github.com/knz/go-libedit v1.10.1/go.mod h1:MZTVkCWyz0oBc7JOWP3wNAzd002ZbM/5hgShxwh4x8M=
github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
github.com/kr/pretty v0.3.0 h1:WgNl7dwNpEZ6jJ9k1snq4pZsg7DOEN8hP9Xw0Tsjwk0=
github.com/kr/pretty v0.3.0/go.mod h1:640gp4NfQd8pI5XOwp5fnNeVWj67G7CFk/SaSQn7NBk=
github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
github.com/kr/text v0.1.0 h1:45sCR5RtlFHMR4UwH9sdQ5TC8v0qDQCHnXt+kaKSTVE=
github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
github.com/leodido/go-urn v1.2.4 h1:XlAE/cm/ms7TE/VMVoduSpNBoyc2dOxHs5MZSwAN63Q=
github.com/leodido/go-urn v1.2.4/go.mod h1:7ZrI8mTSeBSHl/UaRyKQW1qZeMgak41ANeCNaVckg+4=
github.com/mattn/go-colorable v0.1.12 h1:jF+Du6AlPIjs2BiUiQlKOX0rt3SujHxPnksPKZbaA40=
github.com/mattn/go-colorable v0.1.12/go.mod h1:u5H1YNBxpqRaxsYJYSkiCWKzEfiAb1Gb520KVy5xxl4=
github.com/mattn/go-isatty v0.0.19 h1:JITubQf0MOLdlGRuRq+jtsDlekdYPia9ZFsB8h/APPA=
github.com/mattn/go-isatty v0.0.19/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
github.com/mattn/go-sqlite3 v1.14.17 h1:mCRHCLDUBXgpKAqIKsaAaAsrAlbkeomtRFKXh2L6YIM=
github.com/mattn/go-sqlite3 v1.14.17/go.mod h1:2eHXhiwb8IkHr+BDWZGa96P6+rkvnG63S2DGjv9HUNg=
github.com/miekg/dns v1.1.55 h1:GoQ4hpsj0nFLYe+bWiCToyrBEJXkQfOOIvFGFy0lEgo=
github.com/miekg/dns v1.1.55/go.mod h1:uInx36IzPl7FYnDcMeVWxj9byh7DutNykX4G9Sj60FY=
github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
github.com/modern-go/reflect2 v1.0.1/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9Gz0M=
github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
github.com/nrdcg/dnspod-go v0.4.0 h1:c/jn1mLZNKF3/osJ6mz3QPxTudvPArXTjpkmYj0uK6U=
github.com/nrdcg/dnspod-go v0.4.0/go.mod h1:vZSoFSFeQVm2gWLMkyX61LZ8HI3BaqtHZWgPTGKr6KQ=
github.com/pelletier/go-toml/v2 v2.1.0 h1:FnwAJ4oYMvbT/34k9zzHuZNrhlz48GB3/s6at6/MHO4=
github.com/pelletier/go-toml/v2 v2.1.0/go.mod h1:tJU2Z3ZkXwnxa4DPO899bsyIoywizdUvyaeZurnPPDc=
github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
github.com/robfig/cron/v3 v3.0.1 h1:WdRxkvbJztn8LMz/QEvLN5sBU+xKpSqwwUO1Pjr4qDs=
github.com/robfig/cron/v3 v3.0.1/go.mod h1:eQICP3HwyT7UooqI/z+Ov+PtYAWygg1TEWWzGIFLtro=
github.com/rogpeppe/go-internal v1.8.1 h1:geMPLpDpQOgVyCg5z5GoRwLHepNdb71NXb67XFkP+Eg=
github.com/rogpeppe/go-internal v1.8.1/go.mod h1:JeRgkft04UBgHMgCIwADu4Pn6Mtm5d4nPKWu0nJ5d+o=
github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
github.com/stretchr/testify v1.8.2/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS4MhqMhdFk5YI=
github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
github.com/ugorji/go/codec v1.2.11 h1:BMaWp1Bb6fHwEtbplGBGJ498wD+LKlNSl25MjdZY4dU=
github.com/ugorji/go/codec v1.2.11/go.mod h1:UNopzCgEMSXjBc6AOMqYvWC1ktqTAfzJZUZgYf6w6lg=
golang.org/x/arch v0.0.0-20210923205945-b76863e36670/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
golang.org/x/arch v0.5.0 h1:jpGode6huXQxcskEIpOCvrU+tzo81b6+oFLUYXWtH/Y=
golang.org/x/arch v0.5.0/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
golang.org/x/crypto v0.0.0-20190911031432-227b76d455e7/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
golang.org/x/crypto v0.14.0 h1:wBqGXzWJW6m1XrIKlAH0Hs1JJ7+9KBwnIO8v66Q9cHc=
golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
golang.org/x/mod v0.11.0 h1:bUO06HqtnRcc/7l71XBe4WcqTZ+3AH1J59zWDDwLKgU=
golang.org/x/mod v0.11.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
golang.org/x/net v0.16.0 h1:7eBu7KsSvFDtSXUIDbh3aqlK4DPsZ1rByC8PFfBThos=
golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
golang.org/x/sync v0.3.0 h1:ftCYgMx6zT/asHUrPw8BLLscYtGznsLAnjq5RH9P66E=
golang.org/x/sync v0.3.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
golang.org/x/text v0.13.0 h1:ablQoSUd0tRdKxZewP80B+BaqeKJuVhuRxj/dkrun3k=
golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
golang.org/x/time v0.3.0 h1:rg5rLMjNzMS1RkNLzCG38eapWhnYLFYXDXj2gOlr8j4=
golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
golang.org/x/tools v0.10.0 h1:tvDr/iQoUqNdohiYm0LmmKcBk+q86lb9EprIUFhHHGg=
golang.org/x/tools v0.10.0/go.mod h1:UJwyiVBsOA2uwvK/e5OY3GTpDUJriEd+/YlqAwLPmyM=
golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
google.golang.org/protobuf v1.31.0 h1:g0LDEJHgrBl9N9r17Ru3sqWhkIx2NB67okBHPwC7hs8=
google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
gopkg.in/ini.v1 v1.66.2/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
gopkg.in/ini.v1 v1.67.0 h1:Dgnx+6+nfE+IfzjUEISNeydPJh9AXNNsWbGP9KzCsOA=
gopkg.in/ini.v1 v1.67.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
gorm.io/driver/sqlite v1.5.4 h1:IqXwXi8M/ZlPzH/947tn5uik3aYQslP9BVveoax0nV0=
gorm.io/driver/sqlite v1.5.4/go.mod h1:qxAuCol+2r6PannQDpOP1FP6ag3mKi4esLnB/jHed+4=
gorm.io/gorm v1.25.5 h1:zR9lOiiYf09VNh5Q1gphfyia1JpiClIWG9hQaxB/mls=
gorm.io/gorm v1.25.5/go.mod h1:hbnx/Oo0ChWMn1BIhpy1oYozzpM15i4YPuHDmfYtwg8=
nullprogram.com/x/optparse v1.0.0/go.mod h1:KdyPE+Igbe0jQUrVfMqDMeJQIJZEuyV7pjYmp6pbG50=
rsc.io/pdf v0.1.1/go.mod h1:n8OzWcQ6Sp37PL01nO98y4iUCRdTGarVfzxY20ICaU4=
backend/handlers/cert.go
+293
View File
@@ -0,0 +1,293 @@
package handlers
import (
"auto-ssl/config"
"auto-ssl/services"
"fmt"
"net/http"
"path/filepath"
"strconv"
"time"
"github.com/gin-gonic/gin"
"strings"
)
type CertHandler struct {
Cfg *config.Config
}
func NewCertHandler(cfg *config.Config) *CertHandler {
return &CertHandler{Cfg: cfg}
}
// ListCertificates returns all certificates
func (h *CertHandler) ListCertificates(c *gin.Context) {
var certs []config.Certificate
if err := config.DB.Order("created_at desc").Find(&certs).Error; err != nil {
c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
return
}
c.JSON(http.StatusOK, certs)
}
// GetCertificate returns a single certificate
func (h *CertHandler) GetCertificate(c *gin.Context) {
id, err := strconv.ParseUint(c.Param("id"), 10, 64)
if err != nil {
c.JSON(http.StatusBadRequest, gin.H{"error": "invalid id"})
return
}
var cert config.Certificate
if err := config.DB.First(&cert, id).Error; err != nil {
c.JSON(http.StatusNotFound, gin.H{"error": "certificate not found"})
return
}
c.JSON(http.StatusOK, cert)
}
type CreateCertRequest struct {
Domain string `json:"domain" binding:"required"`
Email string `json:"email" binding:"required"`
Provider string `json:"provider"` // letsencrypt, zerossl
ChallengeType string `json:"challenge_type"` // http, dns
DNSProvider string `json:"dns_provider"`
DNSConfig string `json:"dns_config"` // JSON
AutoRenew *bool `json:"auto_renew"`
RenewDays *int `json:"renew_days"`
}
// CreateCertificate creates a new certificate entry and starts issuance
func (h *CertHandler) CreateCertificate(c *gin.Context) {
var req CreateCertRequest
if err := c.ShouldBindJSON(&req); err != nil {
c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
return
}
if req.Provider == "" {
req.Provider = "letsencrypt"
}
if req.ChallengeType == "" {
req.ChallengeType = "http"
}
// Trim spaces from domain
req.Domain = strings.TrimSpace(req.Domain)
// Check if domain already exists
var existing config.Certificate
if err := config.DB.Where("domain = ?", req.Domain).First(&existing).Error; err == nil {
c.JSON(http.StatusConflict, gin.H{"error": "domain already exists"})
return
}
cert := config.Certificate{
Domain: req.Domain,
Email: req.Email,
Provider: req.Provider,
ChallengeType: req.ChallengeType,
DNSProvider: req.DNSProvider,
DNSConfig: req.DNSConfig,
Status: "pending",
AutoRenew: true,
RenewDays: 30,
}
if req.AutoRenew != nil {
cert.AutoRenew = *req.AutoRenew
}
if req.RenewDays != nil {
cert.RenewDays = *req.RenewDays
}
if err := config.DB.Create(&cert).Error; err != nil {
c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
return
}
// Start issuance in background
go func() {
if err := services.GetACMECertificate(&cert, h.Cfg); err != nil {
cert.Status = "error"
cert.ErrorMessage = err.Error()
} else {
cert.Status = "active"
}
config.DB.Save(&cert)
}()
c.JSON(http.StatusAccepted, cert)
}
// RenewCertificate manually renews a certificate
func (h *CertHandler) RenewCertificate(c *gin.Context) {
id, err := strconv.ParseUint(c.Param("id"), 10, 64)
if err != nil {
c.JSON(http.StatusBadRequest, gin.H{"error": "invalid id"})
return
}
var cert config.Certificate
if err := config.DB.First(&cert, id).Error; err != nil {
c.JSON(http.StatusNotFound, gin.H{"error": "certificate not found"})
return
}
cert.Status = "renewing"
config.DB.Save(&cert)
go func() {
if err := services.RenewCertificate(&cert, h.Cfg); err != nil {
cert.Status = "error"
cert.ErrorMessage = err.Error()
} else {
cert.Status = "active"
}
config.DB.Save(&cert)
}()
c.JSON(http.StatusAccepted, gin.H{"message": "renewal started", "certificate": cert})
}
// DeleteCertificate deletes a certificate record and files
func (h *CertHandler) DeleteCertificate(c *gin.Context) {
id, err := strconv.ParseUint(c.Param("id"), 10, 64)
if err != nil {
c.JSON(http.StatusBadRequest, gin.H{"error": "invalid id"})
return
}
var cert config.Certificate
if err := config.DB.First(&cert, id).Error; err != nil {
c.JSON(http.StatusNotFound, gin.H{"error": "certificate not found"})
return
}
if err := config.DB.Delete(&cert).Error; err != nil {
c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
return
}
c.JSON(http.StatusOK, gin.H{"message": "certificate deleted"})
}
// UpdateCertificate updates certificate settings
func (h *CertHandler) UpdateCertificate(c *gin.Context) {
id, err := strconv.ParseUint(c.Param("id"), 10, 64)
if err != nil {
c.JSON(http.StatusBadRequest, gin.H{"error": "invalid id"})
return
}
var cert config.Certificate
if err := config.DB.First(&cert, id).Error; err != nil {
c.JSON(http.StatusNotFound, gin.H{"error": "certificate not found"})
return
}
var updates map[string]interface{}
if err := c.ShouldBindJSON(&updates); err != nil {
c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
return
}
// Only allow updating certain fields
allowedFields := map[string]bool{
"auto_renew": true,
"renew_days": true,
"dns_config": true,
}
filtered := make(map[string]interface{})
for k, v := range updates {
if allowedFields[k] {
filtered[k] = v
}
}
if err := config.DB.Model(&cert).Updates(filtered).Error; err != nil {
c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
return
}
c.JSON(http.StatusOK, cert)
}
// GetCertFiles returns the content of certificate files for download
func (h *CertHandler) GetCertFiles(c *gin.Context) {
id, err := strconv.ParseUint(c.Param("id"), 10, 64)
if err != nil {
c.JSON(http.StatusBadRequest, gin.H{"error": "invalid id"})
return
}
var cert config.Certificate
if err := config.DB.First(&cert, id).Error; err != nil {
c.JSON(http.StatusNotFound, gin.H{"error": "certificate not found"})
return
}
fullchain, privkey, chain := services.GetCertFilesPaths(cert.Domain, h.Cfg)
result := gin.H{
"domain": cert.Domain,
"fullchain": readFileSafe(fullchain),
"privkey": readFileSafe(privkey),
"chain": readFileSafe(chain),
}
c.JSON(http.StatusOK, result)
}
// CheckRenewals checks all certificates and renews those about to expire
func (h *CertHandler) CheckRenewals(c *gin.Context) {
var certs []config.Certificate
config.DB.Where("auto_renew = ? AND status = ?", true, "active").Find(&certs)
renewed := []string{}
failed := []string{}
for _, cert := range certs {
if cert.ExpiresAt != nil && time.Until(*cert.ExpiresAt).Hours() < float64(cert.RenewDays*24) {
if err := services.RenewCertificate(&cert, h.Cfg); err != nil {
cert.Status = "error"
cert.ErrorMessage = fmt.Sprintf("auto renew failed: %v", err)
failed = append(failed, cert.Domain)
} else {
cert.Status = "active"
renewed = append(renewed, cert.Domain)
}
config.DB.Save(&cert)
}
}
c.JSON(http.StatusOK, gin.H{
"message": "renewal check complete",
"renewed": renewed,
"failed": failed,
})
}
// Stats returns dashboard statistics
func (h *CertHandler) Stats(c *gin.Context) {
var total, active, expired, errors int64
config.DB.Model(&config.Certificate{}).Count(&total)
config.DB.Model(&config.Certificate{}).Where("status = ?", "active").Count(&active)
config.DB.Model(&config.Certificate{}).Where("status = ?", "expired").Count(&expired)
config.DB.Model(&config.Certificate{}).Where("status = ?", "error").Count(&errors)
c.JSON(http.StatusOK, gin.H{
"total": total,
"active": active,
"expired": expired,
"errors": errors,
})
}
func readFileSafe(path string) string {
data, err := filepath.Abs(path)
if err != nil {
return ""
}
return data
}
backend/main.go
+103
View File
@@ -0,0 +1,103 @@
package main
import (
"auto-ssl/config"
"auto-ssl/handlers"
"auto-ssl/services"
"log"
"os"
"time"
"github.com/gin-contrib/cors"
"github.com/gin-gonic/gin"
"github.com/robfig/cron/v3"
)
func main() {
cfg := config.Load()
// Initialize database
config.InitDB(cfg)
// Setup Gin
gin.SetMode(gin.ReleaseMode)
r := gin.Default()
// CORS for Vue frontend
r.Use(cors.New(cors.Config{
AllowOrigins: []string{"*"},
AllowMethods: []string{"GET", "POST", "PUT", "DELETE", "OPTIONS"},
AllowHeaders: []string{"Origin", "Content-Type", "Accept", "Authorization"},
AllowCredentials: true,
}))
// Serve static files for frontend
r.Static("/assets", "./dist/assets")
r.StaticFile("/favicon.ico", "./dist/favicon.ico")
r.StaticFile("/", "./dist/index.html")
r.NoRoute(func(c *gin.Context) {
c.File("./dist/index.html")
})
// API routes
api := r.Group("/api")
{
certHandler := handlers.NewCertHandler(cfg)
// Certificate management
api.GET("/certificates", certHandler.ListCertificates)
api.GET("/certificates/:id", certHandler.GetCertificate)
api.POST("/certificates", certHandler.CreateCertificate)
api.PUT("/certificates/:id", certHandler.UpdateCertificate)
api.DELETE("/certificates/:id", certHandler.DeleteCertificate)
api.POST("/certificates/:id/renew", certHandler.RenewCertificate)
api.GET("/certificates/:id/files", certHandler.GetCertFiles)
// Utility
api.GET("/renewals/check", certHandler.CheckRenewals)
api.GET("/stats", certHandler.Stats)
}
// Setup cron for auto-renewal (runs daily at 3:00 AM)
c := cron.New()
c.AddFunc("0 3 * * *", func() {
log.Println("Running scheduled certificate renewal check...")
var certs []config.Certificate
config.DB.Where("auto_renew = ? AND status = ?", true, "active").Find(&certs)
for _, cert := range certs {
if cert.ExpiresAt != nil && time.Until(*cert.ExpiresAt).Hours() < float64(cert.RenewDays*24) {
log.Printf("Auto-renewing certificate for %s (expires %s)", cert.Domain, cert.ExpiresAt.Format(time.RFC3339))
if err := services.RenewCertificate(&cert, cfg); err != nil {
cert.Status = "error"
cert.ErrorMessage = "auto renew: " + err.Error()
log.Printf("Auto-renew failed for %s: %v", cert.Domain, err)
} else {
log.Printf("Auto-renew succeeded for %s", cert.Domain)
}
config.DB.Save(&cert)
}
}
})
c.Start()
// Setup HTTP server for ACME HTTP-01 challenges (port 80)
httpPort := os.Getenv("HTTP_PORT")
if httpPort == "" {
httpPort = "80"
}
go func() {
acme := gin.New()
acme.Use(gin.Recovery())
// HTTP-01 challenge handler from lego
log.Printf("ACME HTTP challenge server listening on :%s", httpPort)
if err := acme.Run(":" + httpPort); err != nil {
log.Printf("ACME HTTP server (port %s) exited: %v", httpPort, err)
}
}()
log.Printf("AutoSSL server starting on :%s", cfg.Port)
if err := r.Run(":" + cfg.Port); err != nil {
log.Fatalf("Failed to start server: %v", err)
}
}
backend/services/acme.go
+323
View File
@@ -0,0 +1,323 @@
package services
import (
"auto-ssl/config"
"crypto"
"crypto/ecdsa"
"crypto/elliptic"
"crypto/rand"
"crypto/x509"
"encoding/json"
"encoding/pem"
"fmt"
"log"
"os"
"path/filepath"
"strings"
"time"
"github.com/go-acme/lego/v4/certcrypto"
"github.com/go-acme/lego/v4/certificate"
"github.com/go-acme/lego/v4/challenge"
"github.com/go-acme/lego/v4/challenge/http01"
"github.com/go-acme/lego/v4/challenge/dns01"
"github.com/go-acme/lego/v4/lego"
alidnsprov "github.com/go-acme/lego/v4/providers/dns/alidns"
cloudflareprov "github.com/go-acme/lego/v4/providers/dns/cloudflare"
dnspodprov "github.com/go-acme/lego/v4/providers/dns/dnspod"
"github.com/go-acme/lego/v4/registration"
)
type ACMEAccount struct {
Email string
PrivateKey crypto.PrivateKey
Registration *registration.Resource
}
// DNSConfig represents DNS provider configuration
type DNSConfig struct {
Provider string `json:"provider"`
// Aliyun DNS
AliKey string `json:"ali_key,omitempty"`
AliSecret string `json:"ali_secret,omitempty"`
// Cloudflare
CFAPIToken string `json:"cf_api_token,omitempty"`
// DNSPod
DNSPodID string `json:"dnspod_id,omitempty"`
DNSPodKey string `json:"dnspod_key,omitempty"`
}
// GetACMECertificate obtains a certificate from ACME provider
func GetACMECertificate(cert *config.Certificate, cfg *config.Config) error {
dir := filepath.Join(cfg.AccountsDir, sanitizeEmail(cert.Email))
account, err := getOrCreateAccount(cert.Email, cert.Provider, dir)
if err != nil {
return fmt.Errorf("failed to setup ACME account: %v", err)
}
legoCfg := lego.NewConfig(account)
legoCfg.CADirURL = getCADirURL(cert.Provider)
legoCfg.Certificate.KeyType = certcrypto.RSA2048
client, err := lego.NewClient(legoCfg)
if err != nil {
return fmt.Errorf("failed to create lego client: %v", err)
}
if strings.ToLower(cert.ChallengeType) == "dns" {
provider, err := getDNSProvider(cert)
if err != nil {
return fmt.Errorf("failed to create DNS provider: %v", err)
}
if err := client.Challenge.SetDNS01Provider(provider,
dns01.AddRecursiveNameservers(dns01.ParseNameservers([]string{"8.8.8.8:53", "1.1.1.1:53"})),
); err != nil {
return fmt.Errorf("failed to set DNS-01 provider: %v", err)
}
} else {
if err := client.Challenge.SetHTTP01Provider(http01.NewProviderServer("", "80")); err != nil {
return fmt.Errorf("failed to set HTTP-01 provider: %v", err)
}
}
request := certificate.ObtainRequest{
Domains: []string{cert.Domain},
Bundle: true,
MustStaple: false,
}
certRes, err := client.Certificate.Obtain(request)
if err != nil {
return fmt.Errorf("failed to obtain certificate: %v", err)
}
// Save certificate files
certDir := filepath.Join(cfg.CertDir, sanitizeDomain(cert.Domain))
if err := os.MkdirAll(certDir, 0700); err != nil {
return fmt.Errorf("failed to create cert directory: %v", err)
}
os.WriteFile(filepath.Join(certDir, "fullchain.pem"), certRes.Certificate, 0644)
os.WriteFile(filepath.Join(certDir, "privkey.pem"), certRes.PrivateKey, 0600)
os.WriteFile(filepath.Join(certDir, "chain.pem"), certRes.IssuerCertificate, 0644)
now := time.Now()
expiresAt := parseCertExpiry(certRes.Certificate)
cert.Status = "active"
cert.CertURL = certRes.CertURL
cert.ExpiresAt = expiresAt
cert.LastRenewedAt = &now
cert.ErrorMessage = ""
log.Printf("Certificate obtained successfully for %s, expires at %s", cert.Domain, expiresAt.Format(time.RFC3339))
return nil
}
// RenewCertificate renews an existing certificate
func RenewCertificate(cert *config.Certificate, cfg *config.Config) error {
dir := filepath.Join(cfg.AccountsDir, sanitizeEmail(cert.Email))
account, err := getOrCreateAccount(cert.Email, cert.Provider, dir)
if err != nil {
return fmt.Errorf("failed to setup ACME account: %v", err)
}
legoCfg := lego.NewConfig(account)
legoCfg.CADirURL = getCADirURL(cert.Provider)
legoCfg.Certificate.KeyType = certcrypto.RSA2048
client, err := lego.NewClient(legoCfg)
if err != nil {
return fmt.Errorf("failed to create lego client: %v", err)
}
if strings.ToLower(cert.ChallengeType) == "dns" {
provider, err := getDNSProvider(cert)
if err != nil {
return fmt.Errorf("failed to create DNS provider: %v", err)
}
if err := client.Challenge.SetDNS01Provider(provider,
dns01.AddRecursiveNameservers(dns01.ParseNameservers([]string{"8.8.8.8:53", "1.1.1.1:53"})),
); err != nil {
return fmt.Errorf("failed to set DNS-01 provider: %v", err)
}
} else {
if err := client.Challenge.SetHTTP01Provider(http01.NewProviderServer("", "80")); err != nil {
return fmt.Errorf("failed to set HTTP-01 provider: %v", err)
}
}
certRes, err := client.Certificate.Renew(certificate.Resource{
Domain: cert.Domain,
CertURL: cert.CertURL,
PrivateKey: nil,
Certificate: nil,
}, true, false, "")
if err != nil {
return fmt.Errorf("failed to renew certificate: %v", err)
}
certDir := filepath.Join(cfg.CertDir, sanitizeDomain(cert.Domain))
os.MkdirAll(certDir, 0700)
os.WriteFile(filepath.Join(certDir, "fullchain.pem"), certRes.Certificate, 0644)
os.WriteFile(filepath.Join(certDir, "privkey.pem"), certRes.PrivateKey, 0600)
os.WriteFile(filepath.Join(certDir, "chain.pem"), certRes.IssuerCertificate, 0644)
now := time.Now()
expiresAt := parseCertExpiry(certRes.Certificate)
cert.Status = "active"
cert.CertURL = certRes.CertURL
cert.ExpiresAt = expiresAt
cert.LastRenewedAt = &now
cert.ErrorMessage = ""
log.Printf("Certificate renewed successfully for %s, expires at %s", cert.Domain, expiresAt.Format(time.RFC3339))
return nil
}
// GetCertFilesPaths returns paths to certificate files
func GetCertFilesPaths(domain string, cfg *config.Config) (fullchain, privkey, chain string) {
dir := filepath.Join(cfg.CertDir, sanitizeDomain(domain))
return filepath.Join(dir, "fullchain.pem"),
filepath.Join(dir, "privkey.pem"),
filepath.Join(dir, "chain.pem")
}
func getOrCreateAccount(email, provider, dir string) (*ACMEAccount, error) {
keyFile := filepath.Join(dir, "account.key")
regFile := filepath.Join(dir, "registration.json")
os.MkdirAll(dir, 0700)
// Try to load existing account
if data, err := os.ReadFile(keyFile); err == nil {
block, _ := pem.Decode(data)
if block != nil {
key, err := x509.ParseECPrivateKey(block.Bytes)
if err == nil {
reg := &registration.Resource{}
if regData, err := os.ReadFile(regFile); err == nil {
json.Unmarshal(regData, reg)
}
return &ACMEAccount{Email: email, PrivateKey: key, Registration: reg}, nil
}
}
}
// Create new account
privateKey, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
if err != nil {
return nil, fmt.Errorf("failed to generate private key: %v", err)
}
account := &ACMEAccount{Email: email, PrivateKey: privateKey}
legoCfg := lego.NewConfig(account)
legoCfg.CADirURL = getCADirURL(provider)
legoCfg.Certificate.KeyType = certcrypto.RSA2048
client, err := lego.NewClient(legoCfg)
if err != nil {
return nil, fmt.Errorf("failed to create lego client: %v", err)
}
reg, err := client.Registration.Register(registration.RegisterOptions{
TermsOfServiceAgreed: true,
})
if err != nil {
return nil, fmt.Errorf("failed to register ACME account: %v", err)
}
account.Registration = reg
keyData, _ := x509.MarshalECPrivateKey(privateKey)
pemData := pem.EncodeToMemory(&pem.Block{Type: "EC PRIVATE KEY", Bytes: keyData})
os.WriteFile(keyFile, pemData, 0600)
regData, _ := json.MarshalIndent(reg, "", " ")
os.WriteFile(regFile, regData, 0600)
log.Printf("New ACME account created for %s with %s", email, provider)
return account, nil
}
func getCADirURL(provider string) string {
switch strings.ToLower(provider) {
case "zerossl":
return "https://acme.zerossl.com/v2/DV90"
default:
return "https://acme-v02.api.letsencrypt.org/directory"
}
}
func getDNSProvider(cert *config.Certificate) (challenge.Provider, error) {
var dnsCfg DNSConfig
if cert.DNSConfig != "" {
if err := json.Unmarshal([]byte(cert.DNSConfig), &dnsCfg); err != nil {
return nil, fmt.Errorf("invalid DNS config JSON: %v", err)
}
}
switch strings.ToLower(cert.DNSProvider) {
case "alidns", "aliyun":
cfg := alidnsprov.NewDefaultConfig()
cfg.APIKey = dnsCfg.AliKey
cfg.SecretKey = dnsCfg.AliSecret
provider, err := alidnsprov.NewDNSProviderConfig(cfg)
if err != nil {
return nil, fmt.Errorf("failed to create Aliyun DNS provider: %v", err)
}
return provider, nil
case "cloudflare":
cfg := cloudflareprov.NewDefaultConfig()
if dnsCfg.CFAPIToken != "" {
cfg.AuthToken = dnsCfg.CFAPIToken
}
provider, err := cloudflareprov.NewDNSProviderConfig(cfg)
if err != nil {
return nil, fmt.Errorf("failed to create Cloudflare DNS provider: %v", err)
}
return provider, nil
case "dnspod":
cfg := dnspodprov.NewDefaultConfig()
if dnsCfg.DNSPodID != "" && dnsCfg.DNSPodKey != "" {
cfg.LoginToken = dnsCfg.DNSPodID + "," + dnsCfg.DNSPodKey
}
provider, err := dnspodprov.NewDNSProviderConfig(cfg)
if err != nil {
return nil, fmt.Errorf("failed to create DNSPod DNS provider: %v", err)
}
return provider, nil
default:
return nil, fmt.Errorf("unsupported DNS provider: %s", dnsCfg.Provider)
}
}
func parseCertExpiry(certPEM []byte) *time.Time {
block, _ := pem.Decode(certPEM)
if block == nil {
return nil
}
cert, err := x509.ParseCertificate(block.Bytes)
if err != nil {
return nil
}
return &cert.NotAfter
}
func sanitizeEmail(email string) string {
return strings.NewReplacer("@", "_at_", ".", "_dot_").Replace(email)
}
func sanitizeDomain(domain string) string {
return strings.NewReplacer("*", "wildcard_", ".", "_").Replace(domain)
}
// lego User interface implementation
func (a *ACMEAccount) GetEmail() string { return a.Email }
func (a *ACMEAccount) GetRegistration() *registration.Resource { return a.Registration }
func (a *ACMEAccount) GetPrivateKey() crypto.PrivateKey { return a.PrivateKey }
docker-compose.yml
+13
View File
@@ -0,0 +1,13 @@
services:
autossl:
build: .
container_name: autossl
restart: unless-stopped
ports:
- "8080:8080" # Web UI and API
- "80:80" # HTTP-01 challenge
environment:
- PORT=8080
- TZ=Asia/Shanghai
volumes:
- ./data:/app/data
frontend/.gitignore
+24
View File
@@ -0,0 +1,24 @@
# Logs
logs
*.log
npm-debug.log*
yarn-debug.log*
yarn-error.log*
pnpm-debug.log*
lerna-debug.log*
node_modules
dist
dist-ssr
*.local
# Editor directories and files
.vscode/*
!.vscode/extensions.json
.idea
.DS_Store
*.suo
*.ntvs*
*.njsproj
*.sln
*.sw?
frontend/README.md
+5
View File
@@ -0,0 +1,5 @@
# Vue 3 + TypeScript + Vite
This template should help get you started developing with Vue 3 and TypeScript in Vite. The template uses Vue 3 `<script setup>` SFCs, check out the [script setup docs](https://v3.vuejs.org/api/sfc-script-setup.html#sfc-script-setup) to learn more.
Learn more about the recommended Project Setup and IDE Support in the [Vue Docs TypeScript Guide](https://vuejs.org/guide/typescript/overview.html#project-setup).
frontend/index.html
+13
View File
@@ -0,0 +1,13 @@
<!doctype html>
<html lang="en">
<head>
<meta charset="UTF-8" />
<link rel="icon" type="image/svg+xml" href="/favicon.svg" />
<meta name="viewport" content="width=device-width, initial-scale=1.0" />
<title>AutoSSL 证书管理</title>
</head>
<body>
<div id="app"></div>
<script type="module" src="/src/main.ts"></script>
</body>
</html>
frontend/public/favicon.svg
+1
View File
File diff suppressed because one or more lines are too long
Side by Side

After

Width:  |  Height:  |  Size: 9.3 KiB

frontend/public/icons.svg
+24
View File
@@ -0,0 +1,24 @@
<svg xmlns="http://www.w3.org/2000/svg">
<symbol id="bluesky-icon" viewBox="0 0 16 17">
<g clip-path="url(#bluesky-clip)"><path fill="#08060d" d="M7.75 7.735c-.693-1.348-2.58-3.86-4.334-5.097-1.68-1.187-2.32-.981-2.74-.79C.188 2.065.1 2.812.1 3.251s.241 3.602.398 4.13c.52 1.744 2.367 2.333 4.07 2.145-2.495.37-4.71 1.278-1.805 4.512 3.196 3.309 4.38-.71 4.987-2.746.608 2.036 1.307 5.91 4.93 2.746 2.72-2.746.747-4.143-1.747-4.512 1.702.189 3.55-.4 4.07-2.145.156-.528.397-3.691.397-4.13s-.088-1.186-.575-1.406c-.42-.19-1.06-.395-2.741.79-1.755 1.24-3.64 3.752-4.334 5.099"/></g>
<defs><clipPath id="bluesky-clip"><path fill="#fff" d="M.1.85h15.3v15.3H.1z"/></clipPath></defs>
</symbol>
<symbol id="discord-icon" viewBox="0 0 20 19">
<path fill="#08060d" d="M16.224 3.768a14.5 14.5 0 0 0-3.67-1.153c-.158.286-.343.67-.47.976a13.5 13.5 0 0 0-4.067 0c-.128-.306-.317-.69-.476-.976A14.4 14.4 0 0 0 3.868 3.77C1.546 7.28.916 10.703 1.231 14.077a14.7 14.7 0 0 0 4.5 2.306q.545-.748.965-1.587a9.5 9.5 0 0 1-1.518-.74q.191-.14.372-.293c2.927 1.369 6.107 1.369 8.999 0q.183.152.372.294-.723.437-1.52.74.418.838.963 1.588a14.6 14.6 0 0 0 4.504-2.308c.37-3.911-.63-7.302-2.644-10.309m-9.13 8.234c-.878 0-1.599-.82-1.599-1.82 0-.998.705-1.82 1.6-1.82.894 0 1.614.82 1.599 1.82.001 1-.705 1.82-1.6 1.82m5.91 0c-.878 0-1.599-.82-1.599-1.82 0-.998.705-1.82 1.6-1.82.893 0 1.614.82 1.599 1.82 0 1-.706 1.82-1.6 1.82"/>
</symbol>
<symbol id="documentation-icon" viewBox="0 0 21 20">
<path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="m15.5 13.333 1.533 1.322c.645.555.967.833.967 1.178s-.322.623-.967 1.179L15.5 18.333m-3.333-5-1.534 1.322c-.644.555-.966.833-.966 1.178s.322.623.966 1.179l1.534 1.321"/>
<path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="M17.167 10.836v-4.32c0-1.41 0-2.117-.224-2.68-.359-.906-1.118-1.621-2.08-1.96-.599-.21-1.349-.21-2.848-.21-2.623 0-3.935 0-4.983.369-1.684.591-3.013 1.842-3.641 3.428C3 6.449 3 7.684 3 10.154v2.122c0 2.558 0 3.838.706 4.726q.306.383.713.671c.76.536 1.79.64 3.581.66"/>
<path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="M3 10a2.78 2.78 0 0 1 2.778-2.778c.555 0 1.209.097 1.748-.047.48-.129.854-.503.982-.982.145-.54.048-1.194.048-1.749a2.78 2.78 0 0 1 2.777-2.777"/>
</symbol>
<symbol id="github-icon" viewBox="0 0 19 19">
<path fill="#08060d" fill-rule="evenodd" d="M9.356 1.85C5.05 1.85 1.57 5.356 1.57 9.694a7.84 7.84 0 0 0 5.324 7.44c.387.079.528-.168.528-.376 0-.182-.013-.805-.013-1.454-2.165.467-2.616-.935-2.616-.935-.349-.91-.864-1.143-.864-1.143-.71-.48.051-.48.051-.48.787.051 1.2.805 1.2.805.695 1.194 1.817.857 2.268.649.064-.507.27-.857.49-1.052-1.728-.182-3.545-.857-3.545-3.87 0-.857.31-1.558.8-2.104-.078-.195-.349-1 .077-2.078 0 0 .657-.208 2.14.805a7.5 7.5 0 0 1 1.946-.26c.657 0 1.328.092 1.946.26 1.483-1.013 2.14-.805 2.14-.805.426 1.078.155 1.883.078 2.078.502.546.799 1.247.799 2.104 0 3.013-1.818 3.675-3.558 3.87.284.247.528.714.528 1.454 0 1.052-.012 1.896-.012 2.156 0 .208.142.455.528.377a7.84 7.84 0 0 0 5.324-7.441c.013-4.338-3.48-7.844-7.773-7.844" clip-rule="evenodd"/>
</symbol>
<symbol id="social-icon" viewBox="0 0 20 20">
<path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="M12.5 6.667a4.167 4.167 0 1 0-8.334 0 4.167 4.167 0 0 0 8.334 0"/>
<path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="M2.5 16.667a5.833 5.833 0 0 1 8.75-5.053m3.837.474.513 1.035c.07.144.257.282.414.309l.93.155c.596.1.736.536.307.965l-.723.73a.64.64 0 0 0-.152.531l.207.903c.164.715-.213.991-.84.618l-.872-.52a.63.63 0 0 0-.577 0l-.872.52c-.624.373-1.003.094-.84-.618l.207-.903a.64.64 0 0 0-.152-.532l-.723-.729c-.426-.43-.289-.864.306-.964l.93-.156a.64.64 0 0 0 .412-.31l.513-1.034c.28-.562.735-.562 1.012 0"/>
</symbol>
<symbol id="x-icon" viewBox="0 0 19 19">
<path fill="#08060d" fill-rule="evenodd" d="M1.893 1.98c.052.072 1.245 1.769 2.653 3.77l2.892 4.114c.183.261.333.48.333.486s-.068.089-.152.183l-.522.593-.765.867-3.597 4.087c-.375.426-.734.834-.798.905a1 1 0 0 0-.118.148c0 .01.236.017.664.017h.663l.729-.83c.4-.457.796-.906.879-.999a692 692 0 0 0 1.794-2.038c.034-.037.301-.34.594-.675l.551-.624.345-.392a7 7 0 0 1 .34-.374c.006 0 .93 1.306 2.052 2.903l2.084 2.965.045.063h2.275c1.87 0 2.273-.003 2.266-.021-.008-.02-1.098-1.572-3.894-5.547-2.013-2.862-2.28-3.246-2.273-3.266.008-.019.282-.332 2.085-2.38l2-2.274 1.567-1.782c.022-.028-.016-.03-.65-.03h-.674l-.3.342a871 871 0 0 1-1.782 2.025c-.067.075-.405.458-.75.852a100 100 0 0 1-.803.91c-.148.172-.299.344-.99 1.127-.304.343-.32.358-.345.327-.015-.019-.904-1.282-1.976-2.808L6.365 1.85H1.8zm1.782.91 8.078 11.294c.772 1.08 1.413 1.973 1.425 1.984.016.017.241.02 1.05.017l1.03-.004-2.694-3.766L7.796 5.75 5.722 2.852l-1.039-.004-1.039-.004z" clip-rule="evenodd"/>
</symbol>
</svg>
Side by Side

After

Width:  |  Height:  |  Size: 4.9 KiB

frontend/src/App.vue
+97
View File
@@ -0,0 +1,97 @@
<template>
<div id="app">
<el-container style="min-height: 100vh">
<el-header class="app-header">
<div class="header-left">
<el-icon :size="24"><Link /></el-icon>
<span class="header-title">AutoSSL 证书管理</span>
</div>
<div class="header-right">
<el-tag type="success" size="small">运行中</el-tag>
</div>
</el-header>
<el-container>
<el-aside width="200px">
<el-menu
:default-active="route.path"
router
background-color="#001529"
text-color="#ffffffb3"
active-text-color="#fff"
>
<el-menu-item index="/">
<el-icon><HomeFilled /></el-icon>
<span>仪表盘</span>
</el-menu-item>
<el-menu-item index="/certificates">
<el-icon><Document /></el-icon>
<span>证书列表</span>
</el-menu-item>
<el-menu-item index="/create">
<el-icon><Plus /></el-icon>
<span>申请证书</span>
</el-menu-item>
</el-menu>
</el-aside>
<el-main>
<router-view />
</el-main>
</el-container>
</el-container>
</div>
</template>
<script setup lang="ts">
import { useRoute } from 'vue-router'
const route = useRoute()
</script>
<style>
* {
margin: 0;
padding: 0;
box-sizing: border-box;
}
body {
font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, 'Helvetica Neue', Arial, sans-serif;
background-color: #f0f2f5;
}
.app-header {
display: flex;
align-items: center;
justify-content: space-between;
background: linear-gradient(135deg, #1890ff, #096dd9);
color: white;
padding: 0 24px;
height: 60px;
box-shadow: 0 2px 8px rgba(0, 0, 0, 0.15);
}
.header-left {
display: flex;
align-items: center;
gap: 12px;
}
.header-title {
font-size: 20px;
font-weight: 600;
letter-spacing: 1px;
}
.el-aside {
background-color: #001529;
min-height: calc(100vh - 60px);
}
.el-menu {
border-right: none;
}
.el-main {
background-color: #f0f2f5;
padding: 24px;
}
</style>
frontend/src/api/index.ts
+55
View File
@@ -0,0 +1,55 @@
import axios from 'axios'
const api = axios.create({
baseURL: '/api',
timeout: 60000,
})
export interface Certificate {
id: number
domain: string
email: string
provider: string
challenge_type: string
dns_provider: string
dns_config: string
status: string
cert_url: string
expires_at: string | null
last_renewed_at: string | null
error_message: string
auto_renew: boolean
renew_days: number
created_at: string
updated_at: string
}
export interface Stats {
total: number
active: number
expired: number
errors: number
}
export interface CreateCertRequest {
domain: string
email: string
provider?: string
challenge_type?: string
dns_provider?: string
dns_config?: string
auto_renew?: boolean
renew_days?: number
}
export const certApi = {
list: () => api.get<Certificate[]>('/certificates'),
get: (id: number) => api.get<Certificate>(`/certificates/${id}`),
create: (data: CreateCertRequest) => api.post<Certificate>('/certificates', data),
update: (id: number, data: Partial<Certificate>) => api.put<Certificate>(`/certificates/${id}`, data),
delete: (id: number) => api.delete(`/certificates/${id}`),
renew: (id: number) => api.post(`/certificates/${id}/renew`),
files: (id: number) => api.get(`/certificates/${id}/files`),
checkRenewals: () => api.get('/renewals/check'),
stats: () => api.get<Stats>('/stats'),
}
frontend/src/assets/hero.png
BIN
View File
Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 13 KiB

frontend/src/assets/vite.svg
+1
View File
File diff suppressed because one or more lines are too long
Side by Side

After

Width:  |  Height:  |  Size: 8.5 KiB

frontend/src/assets/vue.svg
+1
View File
@@ -0,0 +1 @@
<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" aria-hidden="true" role="img" class="iconify iconify--logos" width="37.07" height="36" preserveAspectRatio="xMidYMid meet" viewBox="0 0 256 198"><path fill="#41B883" d="M204.8 0H256L128 220.8L0 0h97.92L128 51.2L157.44 0h47.36Z"></path><path fill="#41B883" d="m0 0l128 220.8L256 0h-51.2L128 132.48L50.56 0H0Z"></path><path fill="#35495E" d="M50.56 0L128 133.12L204.8 0h-47.36L128 51.2L97.92 0H50.56Z"></path></svg>
Side by Side

After

Width:  |  Height:  |  Size: 496 B

frontend/src/components/HelloWorld.vue
+95
View File
@@ -0,0 +1,95 @@
<script setup lang="ts">
import { ref } from 'vue'
import viteLogo from '../assets/vite.svg'
import heroImg from '../assets/hero.png'
import vueLogo from '../assets/vue.svg'
const count = ref(0)
</script>
<template>
<section id="center">
<div class="hero">
<img :src="heroImg" class="base" width="170" height="179" alt="" />
<img :src="vueLogo" class="framework" alt="Vue logo" />
<img :src="viteLogo" class="vite" alt="Vite logo" />
</div>
<div>
<h1>Get started</h1>
<p>Edit <code>src/App.vue</code> and save to test <code>HMR</code></p>
</div>
<button type="button" class="counter" @click="count++">
Count is {{ count }}
</button>
</section>
<div class="ticks"></div>
<section id="next-steps">
<div id="docs">
<svg class="icon" role="presentation" aria-hidden="true">
<use href="/icons.svg#documentation-icon"></use>
</svg>
<h2>Documentation</h2>
<p>Your questions, answered</p>
<ul>
<li>
<a href="https://vite.dev/" target="_blank">
<img class="logo" :src="viteLogo" alt="" />
Explore Vite
</a>
</li>
<li>
<a href="https://vuejs.org/" target="_blank">
<img class="button-icon" :src="vueLogo" alt="" />
Learn more
</a>
</li>
</ul>
</div>
<div id="social">
<svg class="icon" role="presentation" aria-hidden="true">
<use href="/icons.svg#social-icon"></use>
</svg>
<h2>Connect with us</h2>
<p>Join the Vite community</p>
<ul>
<li>
<a href="https://github.com/vitejs/vite" target="_blank">
<svg class="button-icon" role="presentation" aria-hidden="true">
<use href="/icons.svg#github-icon"></use>
</svg>
GitHub
</a>
</li>
<li>
<a href="https://chat.vite.dev/" target="_blank">
<svg class="button-icon" role="presentation" aria-hidden="true">
<use href="/icons.svg#discord-icon"></use>
</svg>
Discord
</a>
</li>
<li>
<a href="https://x.com/vite_js" target="_blank">
<svg class="button-icon" role="presentation" aria-hidden="true">
<use href="/icons.svg#x-icon"></use>
</svg>
X.com
</a>
</li>
<li>
<a href="https://bsky.app/profile/vite.dev" target="_blank">
<svg class="button-icon" role="presentation" aria-hidden="true">
<use href="/icons.svg#bluesky-icon"></use>
</svg>
Bluesky
</a>
</li>
</ul>
</div>
</section>
<div class="ticks"></div>
<section id="spacer"></section>
</template>
frontend/src/main.ts
+18
View File
@@ -0,0 +1,18 @@
import { createApp } from 'vue'
import ElementPlus from 'element-plus'
import 'element-plus/dist/index.css'
import zhCn from 'element-plus/es/locale/lang/zh-cn'
import * as ElementPlusIconsVue from '@element-plus/icons-vue'
import App from './App.vue'
import router from './router'
const app = createApp(App)
// Register all Element Plus icons
for (const [key, component] of Object.entries(ElementPlusIconsVue)) {
app.component(key, component)
}
app.use(ElementPlus, { locale: zhCn })
app.use(router)
app.mount('#app')
frontend/src/router/index.ts
+15
View File
@@ -0,0 +1,15 @@
import { createRouter, createWebHistory } from 'vue-router'
import Dashboard from '../views/Dashboard.vue'
import CertList from '../views/CertList.vue'
import CertCreate from '../views/CertCreate.vue'
const router = createRouter({
history: createWebHistory(),
routes: [
{ path: '/', name: 'Dashboard', component: Dashboard },
{ path: '/certificates', name: 'CertList', component: CertList },
{ path: '/create', name: 'CertCreate', component: CertCreate },
],
})
export default router
frontend/src/style.css
+296
View File
@@ -0,0 +1,296 @@
:root {
--text: #6b6375;
--text-h: #08060d;
--bg: #fff;
--border: #e5e4e7;
--code-bg: #f4f3ec;
--accent: #aa3bff;
--accent-bg: rgba(170, 59, 255, 0.1);
--accent-border: rgba(170, 59, 255, 0.5);
--social-bg: rgba(244, 243, 236, 0.5);
--shadow:
rgba(0, 0, 0, 0.1) 0 10px 15px -3px, rgba(0, 0, 0, 0.05) 0 4px 6px -2px;
--sans: system-ui, 'Segoe UI', Roboto, sans-serif;
--heading: system-ui, 'Segoe UI', Roboto, sans-serif;
--mono: ui-monospace, Consolas, monospace;
font: 18px/145% var(--sans);
letter-spacing: 0.18px;
color-scheme: light dark;
color: var(--text);
background: var(--bg);
font-synthesis: none;
text-rendering: optimizeLegibility;
-webkit-font-smoothing: antialiased;
-moz-osx-font-smoothing: grayscale;
@media (max-width: 1024px) {
font-size: 16px;
}
}
@media (prefers-color-scheme: dark) {
:root {
--text: #9ca3af;
--text-h: #f3f4f6;
--bg: #16171d;
--border: #2e303a;
--code-bg: #1f2028;
--accent: #c084fc;
--accent-bg: rgba(192, 132, 252, 0.15);
--accent-border: rgba(192, 132, 252, 0.5);
--social-bg: rgba(47, 48, 58, 0.5);
--shadow:
rgba(0, 0, 0, 0.4) 0 10px 15px -3px, rgba(0, 0, 0, 0.25) 0 4px 6px -2px;
}
#social .button-icon {
filter: invert(1) brightness(2);
}
}
body {
margin: 0;
}
h1,
h2 {
font-family: var(--heading);
font-weight: 500;
color: var(--text-h);
}
h1 {
font-size: 56px;
letter-spacing: -1.68px;
margin: 32px 0;
@media (max-width: 1024px) {
font-size: 36px;
margin: 20px 0;
}
}
h2 {
font-size: 24px;
line-height: 118%;
letter-spacing: -0.24px;
margin: 0 0 8px;
@media (max-width: 1024px) {
font-size: 20px;
}
}
p {
margin: 0;
}
code,
.counter {
font-family: var(--mono);
display: inline-flex;
border-radius: 4px;
color: var(--text-h);
}
code {
font-size: 15px;
line-height: 135%;
padding: 4px 8px;
background: var(--code-bg);
}
.counter {
font-size: 16px;
padding: 5px 10px;
border-radius: 5px;
color: var(--accent);
background: var(--accent-bg);
border: 2px solid transparent;
transition: border-color 0.3s;
margin-bottom: 24px;
&:hover {
border-color: var(--accent-border);
}
&:focus-visible {
outline: 2px solid var(--accent);
outline-offset: 2px;
}
}
.hero {
position: relative;
.base,
.framework,
.vite {
inset-inline: 0;
margin: 0 auto;
}
.base {
width: 170px;
position: relative;
z-index: 0;
}
.framework,
.vite {
position: absolute;
}
.framework {
z-index: 1;
top: 34px;
height: 28px;
transform: perspective(2000px) rotateZ(300deg) rotateX(44deg) rotateY(39deg)
scale(1.4);
}
.vite {
z-index: 0;
top: 107px;
height: 26px;
width: auto;
transform: perspective(2000px) rotateZ(300deg) rotateX(40deg) rotateY(39deg)
scale(0.8);
}
}
#app {
width: 1126px;
max-width: 100%;
margin: 0 auto;
text-align: center;
border-inline: 1px solid var(--border);
min-height: 100svh;
display: flex;
flex-direction: column;
box-sizing: border-box;
}
#center {
display: flex;
flex-direction: column;
gap: 25px;
place-content: center;
place-items: center;
flex-grow: 1;
@media (max-width: 1024px) {
padding: 32px 20px 24px;
gap: 18px;
}
}
#next-steps {
display: flex;
border-top: 1px solid var(--border);
text-align: left;
& > div {
flex: 1 1 0;
padding: 32px;
@media (max-width: 1024px) {
padding: 24px 20px;
}
}
.icon {
margin-bottom: 16px;
width: 22px;
height: 22px;
}
@media (max-width: 1024px) {
flex-direction: column;
text-align: center;
}
}
#docs {
border-right: 1px solid var(--border);
@media (max-width: 1024px) {
border-right: none;
border-bottom: 1px solid var(--border);
}
}
#next-steps ul {
list-style: none;
padding: 0;
display: flex;
gap: 8px;
margin: 32px 0 0;
.logo {
height: 18px;
}
a {
color: var(--text-h);
font-size: 16px;
border-radius: 6px;
background: var(--social-bg);
display: flex;
padding: 6px 12px;
align-items: center;
gap: 8px;
text-decoration: none;
transition: box-shadow 0.3s;
&:hover {
box-shadow: var(--shadow);
}
.button-icon {
height: 18px;
width: 18px;
}
}
@media (max-width: 1024px) {
margin-top: 20px;
flex-wrap: wrap;
justify-content: center;
li {
flex: 1 1 calc(50% - 8px);
}
a {
width: 100%;
justify-content: center;
box-sizing: border-box;
}
}
}
#spacer {
height: 88px;
border-top: 1px solid var(--border);
@media (max-width: 1024px) {
height: 48px;
}
}
.ticks {
position: relative;
width: 100%;
&::before,
&::after {
content: '';
position: absolute;
top: -4.5px;
border: 5px solid transparent;
}
&::before {
left: 0;
border-left-color: var(--border);
}
&::after {
right: 0;
border-right-color: var(--border);
}
}
frontend/src/views/CertCreate.vue
+167
View File
@@ -0,0 +1,167 @@
<template>
<div class="cert-create">
<h2 class="page-title">申请新证书</h2>
<el-card>
<el-form
ref="formRef"
:model="form"
:rules="rules"
label-width="140px"
style="max-width: 600px"
>
<el-form-item label="域名" prop="domain">
<el-input v-model="form.domain" placeholder="example.com" />
</el-form-item>
<el-form-item label="邮箱" prop="email">
<el-input v-model="form.email" placeholder="admin@example.com" />
</el-form-item>
<el-form-item label="ACME 提供商" prop="provider">
<el-radio-group v-model="form.provider">
<el-radio value="letsencrypt">Let's Encrypt</el-radio>
<el-radio value="zerossl">ZeroSSL</el-radio>
</el-radio-group>
</el-form-item>
<el-form-item label="验证方式" prop="challenge_type">
<el-radio-group v-model="form.challenge_type" @change="onChallengeChange">
<el-radio value="http">HTTP-01(推荐)</el-radio>
<el-radio value="dns">DNS-01</el-radio>
</el-radio-group>
</el-form-item>
<el-form-item label="DNS 提供商" v-if="form.challenge_type === 'dns'" prop="dns_provider">
<el-select v-model="form.dns_provider" placeholder="选择 DNS 提供商" style="width: 100%">
<el-option label="阿里云 DNS (Aliyun)" value="alidns" />
<el-option label="Cloudflare" value="cloudflare" />
<el-option label="DNSPod" value="dnspod" />
</el-select>
</el-form-item>
<!-- Aliyun DNS Config -->
<template v-if="form.challenge_type === 'dns' && form.dns_provider === 'alidns'">
<el-form-item label="AccessKey ID" prop="ali_key">
<el-input v-model="dnsConfig.ali_key" placeholder="Aliyun AccessKey ID" />
</el-form-item>
<el-form-item label="AccessKey Secret" prop="ali_secret">
<el-input v-model="dnsConfig.ali_secret" type="password" show-password placeholder="Aliyun AccessKey Secret" />
</el-form-item>
</template>
<!-- Cloudflare Config -->
<template v-if="form.challenge_type === 'dns' && form.dns_provider === 'cloudflare'">
<el-form-item label="API Token">
<el-input v-model="dnsConfig.cf_api_token" type="password" show-password placeholder="Cloudflare API Token" />
</el-form-item>
</template>
<!-- DNSPod Config -->
<template v-if="form.challenge_type === 'dns' && form.dns_provider === 'dnspod'">
<el-form-item label="ID">
<el-input v-model="dnsConfig.dnspod_id" placeholder="DNSPod ID" />
</el-form-item>
<el-form-item label="Key">
<el-input v-model="dnsConfig.dnspod_key" type="password" show-password placeholder="DNSPod Key" />
</el-form-item>
</template>
<el-form-item label="自动续期">
<el-switch v-model="form.auto_renew" />
</el-form-item>
<el-form-item v-if="form.auto_renew" label="提前续期天数">
<el-input-number v-model="form.renew_days" :min="1" :max="60" />
</el-form-item>
<el-form-item>
<el-button type="primary" @click="handleSubmit" :loading="submitting">
<el-icon><Plus /></el-icon> 提交申请
</el-button>
<el-button @click="$router.push('/certificates')">取消</el-button>
</el-form-item>
</el-form>
</el-card>
</div>
</template>
<script setup lang="ts">
import { ref, reactive } from 'vue'
import { certApi } from '../api'
import { ElMessage } from 'element-plus'
import { useRouter } from 'vue-router'
const router = useRouter()
const formRef = ref()
const submitting = ref(false)
const form = reactive({
domain: '',
email: '',
provider: 'letsencrypt',
challenge_type: 'http',
dns_provider: 'alidns',
auto_renew: true,
renew_days: 30,
})
const dnsConfig = reactive({
ali_key: '',
ali_secret: '',
cf_api_token: '',
dnspod_id: '',
dnspod_key: '',
})
const rules = {
domain: [{ required: true, message: '请输入域名', trigger: 'blur' }],
email: [
{ required: true, message: '请输入邮箱', trigger: 'blur' },
{ type: 'email', message: '邮箱格式不正确', trigger: 'blur' },
],
}
const onChallengeChange = () => {
// Reset DNS config when switching
Object.keys(dnsConfig).forEach(k => (dnsConfig as any)[k] = '')
}
const handleSubmit = async () => {
const valid = await formRef.value.validate().catch(() => false)
if (!valid) return
submitting.value = true
try {
const payload: any = {
domain: form.domain,
email: form.email,
provider: form.provider,
challenge_type: form.challenge_type,
auto_renew: form.auto_renew,
renew_days: form.renew_days,
}
if (form.challenge_type === 'dns') {
payload.dns_provider = form.dns_provider
payload.dns_config = JSON.stringify(dnsConfig)
}
await certApi.create(payload)
ElMessage.success(`证书申请已提交,后台处理中`)
router.push('/certificates')
} catch (e: any) {
ElMessage.error('提交失败: ' + (e.response?.data?.error || e.message))
} finally {
submitting.value = false
}
}
</script>
<style scoped>
.page-title {
margin-bottom: 20px;
font-size: 24px;
color: #1a1a2e;
}
</style>
frontend/src/views/CertList.vue
+220
View File
@@ -0,0 +1,220 @@
<template>
<div class="cert-list">
<div class="page-header">
<h2 class="page-title">证书列表</h2>
<el-button type="primary" @click="$router.push('/create')">
<el-icon><Plus /></el-icon> 申请证书
</el-button>
</div>
<el-card>
<el-table :data="certs" stripe style="width: 100%" v-loading="loading">
<el-table-column type="index" label="#" width="50" />
<el-table-column prop="domain" label="域名" min-width="200" />
<el-table-column label="提供商" width="120">
<template #default="{ row }">
<el-tag :type="row.provider === 'zerossl' ? 'warning' : 'success'" size="small">
{{ row.provider === 'zerossl' ? 'ZeroSSL' : 'Let\'s Encrypt' }}
</el-tag>
</template>
</el-table-column>
<el-table-column label="验证方式" width="90">
<template #default="{ row }">
{{ row.challenge_type === 'dns' ? 'DNS-01' : 'HTTP-01' }}
</template>
</el-table-column>
<el-table-column label="自动续期" width="90">
<template #default="{ row }">
<el-switch
:model-value="row.auto_renew"
@change="(v: boolean) => toggleAutoRenew(row, v)"
size="small"
/>
</template>
</el-table-column>
<el-table-column prop="status" label="状态" width="100">
<template #default="{ row }">
<el-tag :type="statusType(row.status)" size="small">
{{ statusLabel(row.status) }}
</el-tag>
</template>
</el-table-column>
<el-table-column prop="expires_at" label="过期时间" width="180">
<template #default="{ row }">
<span v-if="row.expires_at" :class="{ expired: isExpired(row.expires_at) }">
{{ formatDate(row.expires_at) }}
</span>
<span v-else>-</span>
</template>
</el-table-column>
<el-table-column prop="error_message" label="错误信息" min-width="150">
<template #default="{ row }">
<el-tooltip v-if="row.error_message" :content="row.error_message" placement="top">
<el-tag type="danger" size="small" effect="dark">错误</el-tag>
</el-tooltip>
</template>
</el-table-column>
<el-table-column label="操作" width="250" fixed="right">
<template #default="{ row }">
<el-button size="small" @click="viewFiles(row)">查看证书</el-button>
<el-button size="small" type="primary" :loading="renewingId === row.id" @click="handleRenew(row)">
续期
</el-button>
<el-popconfirm title="确定删除此证书?" @confirm="handleDelete(row)">
<template #reference>
<el-button size="small" type="danger">删除</el-button>
</template>
</el-popconfirm>
</template>
</el-table-column>
</el-table>
</el-card>
<!-- Certificate File Dialog -->
<el-dialog v-model="dialogVisible" title="证书文件" width="720px">
<template v-if="certFiles">
<div class="cert-file-section">
<h4>Fullchain 证书</h4>
<el-input type="textarea" :rows="6" :model-value="certFiles.fullchain" readonly />
</div>
<div class="cert-file-section">
<h4>私钥</h4>
<el-input type="textarea" :rows="6" :model-value="certFiles.privkey" readonly />
</div>
</template>
<div v-else style="text-align: center; padding: 40px; color: #999;">
证书文件生成后即可查看
</div>
<template #footer>
<el-button @click="dialogVisible = false">关闭</el-button>
</template>
</el-dialog>
</div>
</template>
<script setup lang="ts">
import { ref, onMounted } from 'vue'
import { certApi, type Certificate } from '../api'
import { ElMessage } from 'element-plus'
const certs = ref<Certificate[]>([])
const loading = ref(false)
const renewingId = ref<number | null>(null)
const dialogVisible = ref(false)
const certFiles = ref<any>(null)
const loadCerts = async () => {
loading.value = true
try {
const res = await certApi.list()
certs.value = res.data
} catch (e: any) {
ElMessage.error('加载证书列表失败: ' + (e.response?.data?.error || e.message))
} finally {
loading.value = false
}
}
const handleRenew = async (cert: Certificate) => {
renewingId.value = cert.id
try {
await certApi.renew(cert.id)
ElMessage.success(`证书 ${cert.domain} 续期已开始`)
setTimeout(loadCerts, 2000)
} catch (e: any) {
ElMessage.error('续期失败: ' + (e.response?.data?.error || e.message))
} finally {
renewingId.value = null
}
}
const handleDelete = async (cert: Certificate) => {
try {
await certApi.delete(cert.id)
ElMessage.success(`证书 ${cert.domain} 已删除`)
loadCerts()
} catch (e: any) {
ElMessage.error('删除失败: ' + (e.response?.data?.error || e.message))
}
}
const toggleAutoRenew = async (cert: Certificate, val: boolean) => {
try {
await certApi.update(cert.id, { auto_renew: val } as any)
ElMessage.success(val ? '已开启自动续期' : '已关闭自动续期')
} catch (e: any) {
ElMessage.error('更新失败')
}
}
const viewFiles = async (cert: Certificate) => {
try {
const res = await certApi.files(cert.id)
certFiles.value = res.data
dialogVisible.value = true
} catch (e: any) {
ElMessage.error('获取证书文件失败: ' + (e.response?.data?.error || e.message))
}
}
const statusType = (s: string) => {
switch (s) {
case 'active': return 'success'
case 'renewing': case 'pending': return 'warning'
case 'expired': return 'info'
case 'error': return 'danger'
default: return 'info'
}
}
const statusLabel = (s: string) => {
switch (s) {
case 'active': return '有效'
case 'renewing': return '续期中'
case 'pending': return '申请中'
case 'expired': return '已过期'
case 'error': return '错误'
default: return s
}
}
const formatDate = (d: string) => {
const date = new Date(d)
return date.toLocaleDateString('zh-CN')
}
const isExpired = (d: string) => {
return new Date(d) < new Date()
}
onMounted(loadCerts)
</script>
<style scoped>
.page-header {
display: flex;
justify-content: space-between;
align-items: center;
margin-bottom: 20px;
}
.page-title {
font-size: 24px;
color: #1a1a2e;
margin: 0;
}
.expired {
color: #f56c6c;
font-weight: 600;
}
.cert-file-section {
margin-bottom: 16px;
}
.cert-file-section h4 {
margin-bottom: 8px;
color: #333;
}
</style>
frontend/src/views/Dashboard.vue
+161
View File
@@ -0,0 +1,161 @@
<template>
<div class="dashboard">
<h2 class="page-title">仪表盘</h2>
<el-row :gutter="20" class="stat-cards">
<el-col :span="6">
<el-card shadow="hover" class="stat-card total">
<div class="stat-value">{{ stats.total }}</div>
<div class="stat-label">总证书数</div>
</el-card>
</el-col>
<el-col :span="6">
<el-card shadow="hover" class="stat-card active">
<div class="stat-value">{{ stats.active }}</div>
<div class="stat-label">有效证书</div>
</el-card>
</el-col>
<el-col :span="6">
<el-card shadow="hover" class="stat-card expired">
<div class="stat-value">{{ stats.expired }}</div>
<div class="stat-label">已过期</div>
</el-card>
</el-col>
<el-col :span="6">
<el-card shadow="hover" class="stat-card error">
<div class="stat-value">{{ stats.errors }}</div>
<div class="stat-label">错误</div>
</el-card>
</el-col>
</el-row>
<el-card class="recent-certs" style="margin-top: 24px">
<template #header>
<div class="card-header">
<span>最近证书</span>
<el-button text type="primary" @click="$router.push('/certificates')">查看全部</el-button>
</div>
</template>
<el-table :data="certs.slice(0, 5)" stripe style="width: 100%">
<el-table-column prop="domain" label="域名" min-width="200" />
<el-table-column prop="provider" label="提供商" width="120">
<template #default="{ row }">
<el-tag :type="row.provider === 'zerossl' ? 'warning' : 'success'" size="small">
{{ row.provider === 'zerossl' ? 'ZeroSSL' : 'Let\'s Encrypt' }}
</el-tag>
</template>
</el-table-column>
<el-table-column prop="challenge_type" label="验证方式" width="100">
<template #default="{ row }">
{{ row.challenge_type === 'dns' ? 'DNS-01' : 'HTTP-01' }}
</template>
</el-table-column>
<el-table-column prop="status" label="状态" width="100">
<template #default="{ row }">
<el-tag :type="statusType(row.status)" size="small">
{{ statusLabel(row.status) }}
</el-tag>
</template>
</el-table-column>
<el-table-column prop="expires_at" label="过期时间" width="180">
<template #default="{ row }">
{{ row.expires_at ? formatDate(row.expires_at) : '-' }}
</template>
</el-table-column>
</el-table>
</el-card>
</div>
</template>
<script setup lang="ts">
import { ref, onMounted } from 'vue'
import { certApi, type Certificate, type Stats } from '../api'
const stats = ref<Stats>({ total: 0, active: 0, expired: 0, errors: 0 })
const certs = ref<Certificate[]>([])
const loadData = async () => {
try {
const [statsRes, certsRes] = await Promise.all([
certApi.stats(),
certApi.list(),
])
stats.value = statsRes.data
certs.value = certsRes.data
} catch (e) {
console.error('Failed to load data', e)
}
}
const statusType = (s: string) => {
switch (s) {
case 'active': return 'success'
case 'renewing':
case 'pending': return 'warning'
case 'expired': return 'info'
case 'error': return 'danger'
default: return 'info'
}
}
const statusLabel = (s: string) => {
switch (s) {
case 'active': return '有效'
case 'renewing': return '续期中'
case 'pending': return '申请中'
case 'expired': return '已过期'
case 'error': return '错误'
default: return s
}
}
const formatDate = (d: string) => {
const date = new Date(d)
return date.toLocaleDateString('zh-CN') + ' ' + date.toLocaleTimeString('zh-CN', { hour: '2-digit', minute: '2-digit' })
}
onMounted(loadData)
</script>
<style scoped>
.page-title {
margin-bottom: 20px;
font-size: 24px;
color: #1a1a2e;
}
.stat-cards {
margin-bottom: 0;
}
.stat-card {
text-align: center;
border-radius: 8px;
}
.stat-card :deep(.el-card__body) {
padding: 24px;
}
.stat-value {
font-size: 36px;
font-weight: 700;
margin-bottom: 8px;
}
.stat-label {
font-size: 14px;
color: #666;
}
.stat-card.total .stat-value { color: #1890ff; }
.stat-card.active .stat-value { color: #52c41a; }
.stat-card.expired .stat-value { color: #909399; }
.stat-card.error .stat-value { color: #f56c6c; }
.card-header {
display: flex;
justify-content: space-between;
align-items: center;
}
</style>
frontend/vite.config.ts
+7
View File
@@ -0,0 +1,7 @@
import { defineConfig } from 'vite'
import vue from '@vitejs/plugin-vue'
// https://vite.dev/config/
export default defineConfig({
plugins: [vue()],
})