acme.js-ARCHIVED/tests/index.js

'use strict';

require('dotenv').config();

var punycode = require('punycode');
var ACME = require('../acme.js');
var Keypairs = require('../keypairs.js');
var acme = ACME.create({
	// debug: true
});

// TODO exec npm install --save-dev CHALLENGE_MODULE

var config = {
	env: process.env.ENV,
	email: process.env.SUBSCRIBER_EMAIL,
	domain: process.env.BASE_DOMAIN,
	challengeType: process.env.CHALLENGE_TYPE,
	challengeModule: process.env.CHALLENGE_PLUGIN,
	challengeOptions: JSON.parse(process.env.CHALLENGE_OPTIONS)
};
config.debug = !/^PROD/i.test(config.env);
var pluginPrefix = 'acme-' + config.challengeType + '-';
var pluginName = config.challengeModule;
var plugin;

function badPlugin(err) {
	if ('MODULE_NOT_FOUND' !== err.code) {
		console.error(err);
		return;
	}
	console.error("Couldn't find '" + pluginName + "'. Is it installed?");
	console.error("\tnpm install --save-dev '" + pluginName + "'");
}
try {
	plugin = require(pluginName);
} catch (err) {
	if (
		'MODULE_NOT_FOUND' !== err.code ||
		0 === pluginName.indexOf(pluginPrefix)
	) {
		badPlugin(err);
		process.exit(1);
	}
	try {
		pluginName = pluginPrefix + pluginName;
		plugin = require(pluginName);
	} catch (e) {
		badPlugin(e);
		process.exit(1);
	}
}

config.challenger = plugin.create(config.challengeOptions);
if (!config.challengeType || !config.domain) {
	console.error(
		new Error('Missing config variables. Check you .env and the docs')
			.message
	);
	console.error(config);
	process.exit(1);
}

var challenges = {};
challenges[config.challengeType] = config.challenger;

async function happyPath(accKty, srvKty, rnd) {
	var agreed = false;
	var metadata = await acme.init(
		'https://acme-staging-v02.api.letsencrypt.org/directory'
	);

	// Ready to use, show page
	if (config.debug) {
		console.info('ACME.js initialized');
		console.info(metadata);
		console.info();
		console.info();
	}

	var accountKeypair = await Keypairs.generate({ kty: accKty });
	if (config.debug) {
		console.info('Account Key Created');
		console.info(JSON.stringify(accountKeypair, null, 2));
		console.info();
		console.info();
	}

	var account = await acme.accounts.create({
		agreeToTerms: agree,
		// TODO detect jwk/pem/der?
		accountKeypair: { privateKeyJwk: accountKeypair.private },
		subscriberEmail: config.email
	});
	// TODO top-level agree
	function agree(tos) {
		if (config.debug) {
			console.info('Agreeing to Terms of Service:');
			console.info(tos);
			console.info();
			console.info();
		}
		agreed = true;
		return Promise.resolve(tos);
	}
	if (config.debug) {
		console.info('New Subscriber Account');
		console.info(JSON.stringify(account, null, 2));
		console.info();
		console.info();
	}
	if (!agreed) {
		throw new Error('Failed to ask the user to agree to terms');
	}

	var serverKeypair = await Keypairs.generate({ kty: srvKty });
	if (config.debug) {
		console.info('Server Key Created');
		console.info(JSON.stringify(serverKeypair, null, 2));
		console.info();
		console.info();
	}

	var domains = randomDomains(rnd);
	if (config.debug) {
		console.info('Get certificates for random domains:');
		console.info(
			domains
				.map(function(puny) {
					var uni = punycode.toUnicode(puny);
					if (puny !== uni) {
						return puny + ' (' + uni + ')';
					}
					return puny;
				})
				.join('\n')
		);
		console.info();
	}
	var results = await acme.certificates.create({
		account: account,
		accountKeypair: { privateKeyJwk: accountKeypair.private },
		serverKeypair: { privateKeyJwk: serverKeypair.private },
		domains: domains,
		challenges: challenges, // must be implemented
		customerEmail: null,
		skipDryRun: true
	});

	if (config.debug) {
		console.info('Got SSL Certificate:');
		console.info(Object.keys(results));
		console.info(results.expires);
		console.info(results.cert);
		console.info(results.chain);
		console.info();
		console.info();
	}
}

// Try EC + RSA
var rnd = random();
happyPath('EC', 'RSA', rnd)
	.then(function() {
		// Now try RSA + EC
		rnd = random();
		return happyPath('RSA', 'EC', rnd).then(function() {
			console.info('success');
		});
	})
	.catch(function(err) {
		console.error('Error:');
		console.error(err.stack);
	});

function randomDomains(rnd) {
	return ['foo-acmejs', 'bar-acmejs', '*.baz-acmejs', 'baz-acmejs'].map(
		function(pre) {
			return punycode.toASCII(pre + '-' + rnd + '.' + config.domain);
		}
	);
}

function random() {
	return (
		parseInt(
			Math.random()
				.toString()
				.slice(2, 99),
			10
		)
			.toString(16)
			.slice(0, 4) + '例'
	);
}
WIP halfway there 2019-10-04 23:35:59 +00:00			`'use strict';`

WIP gets a cert... nice! 2019-10-05 11:21:07 +00:00			`require('dotenv').config();`

testing working 2019-10-08 10:33:14 +00:00			`var punycode = require('punycode');`
relocate packages for easier export 2019-10-08 19:40:01 +00:00			`var ACME = require('../acme.js');`
			`var Keypairs = require('../keypairs.js');`
cleanup and bugfixes 2019-10-06 07:22:18 +00:00			`var acme = ACME.create({`
			`// debug: true`
			`});`
WIP gets a cert... nice! 2019-10-05 11:21:07 +00:00
			`// TODO exec npm install --save-dev CHALLENGE_MODULE`
WIP halfway there 2019-10-04 23:35:59 +00:00
			`var config = {`
			`env: process.env.ENV,`
			`email: process.env.SUBSCRIBER_EMAIL,`
WIP gets a cert... nice! 2019-10-05 11:21:07 +00:00			`domain: process.env.BASE_DOMAIN,`
			`challengeType: process.env.CHALLENGE_TYPE,`
cleanup and bugfixes 2019-10-06 07:22:18 +00:00			`challengeModule: process.env.CHALLENGE_PLUGIN,`
WIP gets a cert... nice! 2019-10-05 11:21:07 +00:00			`challengeOptions: JSON.parse(process.env.CHALLENGE_OPTIONS)`
WIP halfway there 2019-10-04 23:35:59 +00:00			`};`
			`config.debug = !/^PROD/i.test(config.env);`
cleanup and bugfixes 2019-10-06 07:22:18 +00:00			`var pluginPrefix = 'acme-' + config.challengeType + '-';`
			`var pluginName = config.challengeModule;`
			`var plugin;`

			`function badPlugin(err) {`
			`if ('MODULE_NOT_FOUND' !== err.code) {`
			`console.error(err);`
			`return;`
			`}`
			`console.error("Couldn't find '" + pluginName + "'. Is it installed?");`
			`console.error("\tnpm install --save-dev '" + pluginName + "'");`
			`}`
			`try {`
			`plugin = require(pluginName);`
			`} catch (err) {`
			`if (`
			`'MODULE_NOT_FOUND' !== err.code \|\|`
			`0 === pluginName.indexOf(pluginPrefix)`
			`) {`
			`badPlugin(err);`
			`process.exit(1);`
			`}`
			`try {`
			`pluginName = pluginPrefix + pluginName;`
			`plugin = require(pluginName);`
			`} catch (e) {`
			`badPlugin(e);`
			`process.exit(1);`
			`}`
			`}`

			`config.challenger = plugin.create(config.challengeOptions);`
WIP gets a cert... nice! 2019-10-05 11:21:07 +00:00			`if (!config.challengeType \|\| !config.domain) {`
			`console.error(`
			`new Error('Missing config variables. Check you .env and the docs')`
			`.message`
			`);`
			`console.error(config);`
			`process.exit(1);`
			`}`

			`var challenges = {};`
			`challenges[config.challengeType] = config.challenger;`
WIP halfway there 2019-10-04 23:35:59 +00:00
cleanup and bugfixes 2019-10-06 07:22:18 +00:00			`async function happyPath(accKty, srvKty, rnd) {`
WIP halfway there 2019-10-04 23:35:59 +00:00			`var agreed = false;`
			`var metadata = await acme.init(`
			`'https://acme-staging-v02.api.letsencrypt.org/directory'`
			`);`

			`// Ready to use, show page`
			`if (config.debug) {`
			`console.info('ACME.js initialized');`
			`console.info(metadata);`
testing working 2019-10-08 10:33:14 +00:00			`console.info();`
WIP halfway there 2019-10-04 23:35:59 +00:00			`console.info();`
			`}`

cleanup and bugfixes 2019-10-06 07:22:18 +00:00			`var accountKeypair = await Keypairs.generate({ kty: accKty });`
WIP halfway there 2019-10-04 23:35:59 +00:00			`if (config.debug) {`
			`console.info('Account Key Created');`
			`console.info(JSON.stringify(accountKeypair, null, 2));`
testing working 2019-10-08 10:33:14 +00:00			`console.info();`
WIP halfway there 2019-10-04 23:35:59 +00:00			`console.info();`
			`}`

			`var account = await acme.accounts.create({`
			`agreeToTerms: agree,`
			`// TODO detect jwk/pem/der?`
			`accountKeypair: { privateKeyJwk: accountKeypair.private },`
email -> subscriberEmail 2019-10-08 10:48:31 +00:00			`subscriberEmail: config.email`
WIP halfway there 2019-10-04 23:35:59 +00:00			`});`
			`// TODO top-level agree`
			`function agree(tos) {`
			`if (config.debug) {`
			`console.info('Agreeing to Terms of Service:');`
			`console.info(tos);`
testing working 2019-10-08 10:33:14 +00:00			`console.info();`
WIP halfway there 2019-10-04 23:35:59 +00:00			`console.info();`
			`}`
			`agreed = true;`
			`return Promise.resolve(tos);`
			`}`
			`if (config.debug) {`
			`console.info('New Subscriber Account');`
			`console.info(JSON.stringify(account, null, 2));`
			`console.info();`
			`console.info();`
			`}`
			`if (!agreed) {`
			`throw new Error('Failed to ask the user to agree to terms');`
			`}`

cleanup and bugfixes 2019-10-06 07:22:18 +00:00			`var serverKeypair = await Keypairs.generate({ kty: srvKty });`
WIP halfway there 2019-10-04 23:35:59 +00:00			`if (config.debug) {`
			`console.info('Server Key Created');`
			`console.info(JSON.stringify(serverKeypair, null, 2));`
			`console.info();`
WIP gets a cert... nice! 2019-10-05 11:21:07 +00:00			`console.info();`
			`}`

cleanup and bugfixes 2019-10-06 07:22:18 +00:00			`var domains = randomDomains(rnd);`
WIP gets a cert... nice! 2019-10-05 11:21:07 +00:00			`if (config.debug) {`
			`console.info('Get certificates for random domains:');`
testing working 2019-10-08 10:33:14 +00:00			`console.info(`
			`domains`
			`.map(function(puny) {`
			`var uni = punycode.toUnicode(puny);`
			`if (puny !== uni) {`
			`return puny + ' (' + uni + ')';`
			`}`
			`return puny;`
			`})`
			`.join('\n')`
			`);`
			`console.info();`
WIP gets a cert... nice! 2019-10-05 11:21:07 +00:00			`}`
			`var results = await acme.certificates.create({`
			`account: account,`
			`accountKeypair: { privateKeyJwk: accountKeypair.private },`
			`serverKeypair: { privateKeyJwk: serverKeypair.private },`
			`domains: domains,`
			`challenges: challenges, // must be implemented`
email -> subscriberEmail 2019-10-08 10:48:31 +00:00			`customerEmail: null,`
WIP gets a cert... nice! 2019-10-05 11:21:07 +00:00			`skipDryRun: true`
			`});`

			`if (config.debug) {`
			`console.info('Got SSL Certificate:');`
cleanup and bugfixes 2019-10-06 07:22:18 +00:00			`console.info(Object.keys(results));`
WIP gets a cert... nice! 2019-10-05 11:21:07 +00:00			`console.info(results.expires);`
			`console.info(results.cert);`
			`console.info(results.chain);`
testing working 2019-10-08 10:33:14 +00:00			`console.info();`
			`console.info();`
WIP halfway there 2019-10-04 23:35:59 +00:00			`}`
			`}`

cleanup and bugfixes 2019-10-06 07:22:18 +00:00			`// Try EC + RSA`
			`var rnd = random();`
			`happyPath('EC', 'RSA', rnd)`
WIP halfway there 2019-10-04 23:35:59 +00:00			`.then(function() {`
cleanup and bugfixes 2019-10-06 07:22:18 +00:00			`// Now try RSA + EC`
			`rnd = random();`
			`return happyPath('RSA', 'EC', rnd).then(function() {`
			`console.info('success');`
			`});`
WIP halfway there 2019-10-04 23:35:59 +00:00			`})`
			`.catch(function(err) {`
			`console.error('Error:');`
			`console.error(err.stack);`
			`});`

cleanup and bugfixes 2019-10-06 07:22:18 +00:00			`function randomDomains(rnd) {`
WIP halfway there 2019-10-04 23:35:59 +00:00			`return ['foo-acmejs', 'bar-acmejs', '*.baz-acmejs', 'baz-acmejs'].map(`
			`function(pre) {`
testing working 2019-10-08 10:33:14 +00:00			`return punycode.toASCII(pre + '-' + rnd + '.' + config.domain);`
WIP halfway there 2019-10-04 23:35:59 +00:00			`}`
			`);`
			`}`

			`function random() {`
testing working 2019-10-08 10:33:14 +00:00			`return (`
			`parseInt(`
			`Math.random()`
			`.toString()`
			`.slice(2, 99),`
			`10`
			`)`
			`.toString(16)`
			`.slice(0, 4) + '例'`
			`);`
WIP halfway there 2019-10-04 23:35:59 +00:00			`}`