README.md

@@ -23,11 +23,10 @@ In progress
 * Mar 20, 2018 - SUCCESS - got a test certificate (hard-coded)
 * Mar 21, 2018 - can now accept values (not hard coded)
 * Mar 21, 2018 - *mostly* matches le-acme-core.js API
-* Apr  5, 2018 - completely match api for acme v1 (le-acme-core.js)
 
 Todo
 
-* test wildcard
+* completely match api for acme v1 (le-acme-core.js)
 * test http and dns challenges
 * export http and dns challenge tests
 * support ECDSA keys

node.js

@@ -9,11 +9,6 @@
 var ACME = module.exports.ACME = {};
 
 ACME.acmeChallengePrefix = '/.well-known/acme-challenge/';
-ACME.acmeChallengeDnsPrefix = '_acme-challenge';
-ACME.acmeChallengePrefixes = {
-  'http-01': '/.well-known/acme-challenge/'
-, 'dns-01': '_acme-challenge'
-};
 
 ACME._getUserAgentString = function (deps) {
   var uaDefaults = {
@@ -373,7 +368,6 @@ ACME._getCertificate = function (me, options) {
 
   console.log('[acme-v2] certificates.create');
   return ACME._getNonce(me).then(function () {
-    console.log("27 &#&#&#&#&#&#&&##&#&#&#&#&#&#&#&");
     var body = {
       identifiers: options.domains.map(function (hostname) {
         return { type: "dns" , value: hostname };
@@ -407,11 +401,6 @@ ACME._getCertificate = function (me, options) {
       me._finalize = resp.body.finalize;
       //console.log('[DEBUG] finalize:', me._finalize); return;
 
-      if (!me._authorizations) {
-        console.log("&#&#&#&#&#&#&&##&#&#&#&#&#&#&#&");
-      }
-      console.log("47 &#&#&#&#&#&#&&##&#&#&#&#&#&#&#&");
-
       //return resp.body;
       return Promise.all(me._authorizations.map(function (authUrl, i) {
         console.log("Authorizations map #" + i);
@@ -436,7 +425,6 @@ ACME._getCertificate = function (me, options) {
           return ACME._postChallenge(me, options, results.identifier, challenge);
         });
       })).then(function () {
-        console.log("37 &#&#&#&#&#&#&&##&#&#&#&#&#&#&#&");
         var validatedDomains = body.identifiers.map(function (ident) {
           return ident.value;
         });
@@ -456,8 +444,6 @@ ACME._getCertificate = function (me, options) {
 ACME.create = function create(me) {
   if (!me) { me = {}; }
   me.acmeChallengePrefix = ACME.acmeChallengePrefix;
-  me.acmeChallengeDnsPrefix = ACME.acmeChallengeDnsPrefix;
-  me.acmeChallengePrefixes = ACME.acmeChallengePrefixes;
   me.RSA = me.RSA || require('rsa-compat').RSA;
   me.request = me.request || require('request');
   me.promisify = me.promisify || require('util').promisify;

test.cb.js

@@ -1,17 +1,21 @@
 'use strict';
 
-module.exports.run = function run(web, chType, email, accountKeypair, domainKeypair) {
+module.exports.run = function run(web, chType, email) {
   var RSA = require('rsa-compat').RSA;
   var directoryUrl = 'https://acme-staging-v02.api.letsencrypt.org/directory';
-  var acme2 = require('./').ACME.create({ RSA: RSA });
+  var acme2 = require('./compat').ACME.create({ RSA: RSA });
   // [ 'test.ppl.family' ] 'coolaj86@gmail.com''http-01'
-  acme2.init(directoryUrl).then(function () {
+	console.log(web, chType, email);
+	return;
+  acme2.init(directoryUrl).then(function (body) {
+    console.log(body);
+		return;
+
     var options = {
       agreeToTerms: function (tosUrl, agree) {
         agree(null, tosUrl);
       }
     , setChallenge: function (opts, cb) {
-        var pathname;
 
         console.log("");
         console.log('identifier:');
@@ -30,50 +34,40 @@ module.exports.run = function run(web, chType, email, accountKeypair, domainKeyp
         console.log(opts.dnsAuthorization);
         console.log("");
 
-        if ('http-01' === opts.type) {
+        console.log("Put the string '" + opts.keyAuthorization + "' into a file at '" + opts.hostname + "/" + opts.token + "'");
-          pathname = opts.hostname + acme2.acmeChallengePrefix + "/" + opts.token;
+        console.log("\nThen hit the 'any' key to continue (must be specifically the 'any' key)...");
-          console.log("Put the string '" + opts.keyAuthorization + "' into a file at '" + pathname + "'");
-          console.log("echo '" + opts.keyAuthorization + "' > '" + pathname + "'");
-        } else if ('dns-01' === opts.type) {
-          pathname = acme2.acmeChallengeDnsPrefix + "." + opts.hostname.replace(/^\*\./, '');
-          console.log("Put the string '" + opts.dnsAuthorization + "' into the TXT record '" + pathname + "'");
-          console.log("ddig TXT " + pathname + " '" + opts.dnsAuthorization + "'");
-        } else {
-          cb(new Error("[acme-v2] unrecognized challenge type"));
-          return;
-        }
-        console.log("\nThen hit the 'any' key to continue...");
 
         function onAny() {
-          console.log("'any' key was hit");
           process.stdin.pause();
-          process.stdin.removeListener('data', onAny);
+          process.stdin.removeEventListener('data', onAny);
           process.stdin.setRawMode(false);
           cb();
         }
-
         process.stdin.setRawMode(true);
         process.stdin.resume();
         process.stdin.on('data', onAny);
       }
     , removeChallenge: function (opts, cb) {
-        // hostname, key
+				// hostname, key
-        console.log('[acme-v2] remove challenge', opts.hostname, opts.keyAuthorization);
+        console.log('[DEBUG] remove challenge', hostname, key);
         setTimeout(cb, 1 * 1000);
       }
     , challengeType: chType
     , email: email
-    , accountKeypair: accountKeypair
+    , accountKeypair: RSA.import({ privateKeyPem: require('fs').readFileSync(__dirname + '/account.privkey.pem') })
-    , domainKeypair: domainKeypair
+    , domainKeypair: RSA.import({ privateKeyPem: require('fs').readFileSync(__dirname + '/privkey.pem') })
     , domains: web
     };
 
-    acme2.accounts.create(options).then(function (account) {
+    acme2.registerNewAccount(options).then(function (account) {
-      console.log('[acme-v2] account:');
+      console.log('account:');
       console.log(account);
 
-      acme2.certificates.create(options).then(function (fullchainPem) {
+      acme2.getCertificate(options, function (fullchainPem) {
-        console.log('[acme-v2] fullchain.pem:');
+        console.log('[acme-v2] A fullchain.pem:');
+        console.log(fullchainPem);
+      }).then(function (fullchainPem) {
+        console.log('[acme-v2] B fullchain.pem:');
         console.log(fullchainPem);
       });
     });

test.compat.js

@@ -2,22 +2,22 @@
 
 var RSA = require('rsa-compat').RSA;
 
-module.exports.run = function (web, chType, email, accountKeypair, domainKeypair) {
+module.exports.run = function (web, chType, email) {
   console.log('[DEBUG] run', web, chType, email);
 
   var acme2 = require('./compat.js').ACME.create({ RSA: RSA });
-  acme2.getAcmeUrls(acme2.stagingServerUrl, function (err/*, directoryUrls*/) {
+  acme2.getAcmeUrls(acme2.stagingServerUrl, function (err, body) {
     if (err) { console.log('err 1'); throw err; }
+    console.log(body);
 
     var options = {
       agreeToTerms: function (tosUrl, agree) {
         agree(null, tosUrl);
       }
     , setChallenge: function (hostname, token, val, cb) {
-        var pathname = hostname + acme2.acmeChallengePrefix + "/" + token;
+        console.log("Put the string '" + val + "' into a file at '" + hostname + "/" + acme2.acmeChallengePrefix + "/" + token + "'");
-        console.log("Put the string '" + val + "' into a file at '" + pathname + "'");
+        console.log("echo '" + val + "' > '" + hostname + "/" + acme2.acmeChallengePrefix + "/" + token + "'");
-        console.log("echo '" + val + "' > '" + pathname + "'");
+        console.log("\nThen hit the 'any' key to continue (must be specifically the 'any' key)...");
-        console.log("\nThen hit the 'any' key to continue...");
 
         function onAny() {
           console.log("'any' key was hit");
@@ -37,8 +37,8 @@ module.exports.run = function (web, chType, email, accountKeypair, domainKeypair
       }
     , challengeType: chType
     , email: email
-    , accountKeypair: accountKeypair
+    , accountKeypair: RSA.import({ privateKeyPem: require('fs').readFileSync(__dirname + '/account.privkey.pem') })
-    , domainKeypair: domainKeypair
+    , domainKeypair: RSA.import({ privateKeyPem: require('fs').readFileSync(__dirname + '/privkey.pem') })
     , domains: web
     };
 

test.js

@@ -1,6 +1,5 @@
 'use strict';
 
-var RSA = require('rsa-compat').RSA;
 var readline = require('readline');
 var rl = readline.createInterface({
   input: process.stdin,
@@ -8,9 +7,9 @@ var rl = readline.createInterface({
 });
 
 function getWeb() {
-  rl.question('What web address(es) would you like to get certificates for? (ex: example.com,*.example.com) ', function (web) {
+	rl.question('What web address(es) would you like to get certificates for? (ex: example.com,*.example.com) ', function (web) {
-    web = (web||'').trim().split(/,/g);
+		web = (web||'').trim().split(/,/g);
-    if (!web[0]) { getWeb(); return; }
+		if (!web[0]) { getWeb(); return; }
 
     if (web.some(function (w) { return '*' === w[0]; })) {
       console.log('Wildcard domains must use dns-01');
@@ -18,30 +17,29 @@ function getWeb() {
     } else {
       getChallengeType(web);
     }
-  });
+	});
 }
 
 function getChallengeType(web) {
-  rl.question('What challenge will you be testing today? http-01 or dns-01? [http-01] ', function (chType) {
+	rl.question('What challenge will you be testing today? http-01 or dns-01? [http-01] ', function (chType) {
-    chType = (chType||'').trim();
+		chType = (chType||'').trim();
-    if (!chType) { chType = 'http-01'; }
+		if (!chType) { chType = 'http-01'; }
 
-    getEmail(web, chType);
+		getEmail(web, chType);
-  });
+	});
 }
 
 function getEmail(web, chType) {
-  rl.question('What email should we use? (optional) ', function (email) {
+	rl.question('What email should we use? (optional) ', function (email) {
-    email = (email||'').trim();
+		email = (email||'').trim();
-    if (!email) { email = null; }
+		if (!email) { email = null; }
 
     rl.close();
-    var accountKeypair = RSA.import({ privateKeyPem: require('fs').readFileSync(__dirname + '/account.privkey.pem') });
+    console.log("[DEBUG] rl blah blah");
-    var domainKeypair = RSA.import({ privateKeyPem: require('fs').readFileSync(__dirname + '/privkey.pem') });
+    require('./test.compat.js').run(web, chType, email);
-    //require('./test.compat.js').run(web, chType, email, accountKeypair, domainKeypair);
+    //require('./test.cb.js').run(web, chType, email);
-    //require('./test.cb.js').run(web, chType, email, accountKeypair, domainKeypair);
+    //require('./test.promise.js').run(web, chType, email);
-    require('./test.promise.js').run(web, chType, email, accountKeypair, domainKeypair);
+	});
-  });
 }
 
 getWeb();

test.promise.js

@@ -1,85 +1,82 @@
 'use strict';
 
 /* global Promise */
-module.exports.run = function run(web, chType, email, accountKeypair, domainKeypair) {
+
+module.exports.run = function run(web, chType, email) {
   var RSA = require('rsa-compat').RSA;
   var directoryUrl = 'https://acme-staging-v02.api.letsencrypt.org/directory';
-  var acme2 = require('./').ACME.create({ RSA: RSA });
+  var acme2 = require('./compat').ACME.create({ RSA: RSA });
   // [ 'test.ppl.family' ] 'coolaj86@gmail.com''http-01'
-  acme2.init(directoryUrl).then(function () {
+	console.log(web, chType, email);
+	return;
+  acme2.init(directoryUrl).then(function (body) {
+    console.log(body);
+		return;
+
     var options = {
-      agreeToTerms: function (tosUrl) {
+      agreeToTerms: function (tosUrl, agree) {
-        return Promise.resolve(tosUrl);
+        agree(null, tosUrl);
       }
     , setChallenge: function (opts) {
-        return new Promise(function (resolve, reject) {
-          var pathname;
 
-          console.log("");
+        console.log("");
-          console.log('identifier:');
+        console.log('identifier:');
-          console.log(opts.identifier);
+        console.log(opts.identifier);
-          console.log('hostname:');
+        console.log('hostname:');
-          console.log(opts.hostname);
+        console.log(opts.hostname);
-          console.log('type:');
+        console.log('type:');
-          console.log(opts.type);
+        console.log(opts.type);
-          console.log('token:');
+        console.log('token:');
-          console.log(opts.token);
+        console.log(opts.token);
-          console.log('thumbprint:');
+        console.log('thumbprint:');
-          console.log(opts.thumbprint);
+        console.log(opts.thumbprint);
-          console.log('keyAuthorization:');
+        console.log('keyAuthorization:');
-          console.log(opts.keyAuthorization);
+        console.log(opts.keyAuthorization);
-          console.log('dnsAuthorization:');
+        console.log('dnsAuthorization:');
-          console.log(opts.dnsAuthorization);
+        console.log(opts.dnsAuthorization);
-          console.log("");
+        console.log("");
 
-          if ('http-01' === opts.type) {
+        console.log("Put the string '" + opts.keyAuthorization + "' into a file at '" + opts.hostname + "/" + opts.token + "'");
-            pathname = opts.hostname + acme2.acmeChallengePrefix + "/" + opts.token;
+        console.log("\nThen hit the 'any' key to continue (must be specifically the 'any' key)...");
-            console.log("Put the string '" + opts.keyAuthorization + "' into a file at '" + pathname + "'");
-            console.log("echo '" + opts.keyAuthorization + "' > '" + pathname + "'");
-          } else if ('dns-01' === opts.type) {
-            pathname = acme2.acmeChallengeDnsPrefix + "." + opts.hostname.replace(/^\*\./, '');;
-            console.log("Put the string '" + opts.dnsAuthorization + "' into the TXT record '" + pathname + "'");
-            console.log("ddig TXT " + pathname + " '" + opts.dnsAuthorization + "'");
-          } else {
-            reject(new Error("[acme-v2] unrecognized challenge type"));
-            return;
-          }
-          console.log("\nThen hit the 'any' key to continue...");
 
+        return new Promise(function (resolve) {
           function onAny() {
-            console.log("'any' key was hit");
             process.stdin.pause();
-            process.stdin.removeListener('data', onAny);
+            process.stdin.removeEventListener('data', onAny);
             process.stdin.setRawMode(false);
-            resolve();
-            return;
-          }
 
+            resolve();
+          }
           process.stdin.setRawMode(true);
           process.stdin.resume();
           process.stdin.on('data', onAny);
         });
       }
     , removeChallenge: function (opts) {
-        console.log('[acme-v2] remove challenge', opts.hostname, opts.keyAuthorization);
+				// hostname, key
+        console.log('[DEBUG] remove challenge', opts.hostname, opts.keyAuthorization);
+        console.log("Remove the file '" + opts.hostname + "/" + opts.token + "'");
+
         return new Promise(function (resolve) {
-          // hostname, key
           setTimeout(resolve, 1 * 1000);
         });
       }
     , challengeType: chType
     , email: email
-    , accountKeypair: accountKeypair
+    , accountKeypair: RSA.import({ privateKeyPem: require('fs').readFileSync(__dirname + '/account.privkey.pem') })
-    , domainKeypair: domainKeypair
+    , domainKeypair: RSA.import({ privateKeyPem: require('fs').readFileSync(__dirname + '/privkey.pem') })
     , domains: web
     };
 
-    acme2.accounts.create(options).then(function (account) {
+    acme2.registerNewAccount(options).then(function (account) {
-      console.log('[acme-v2] account:');
+      console.log('account:');
       console.log(account);
 
-      acme2.certificates.create(options).then(function (fullchainPem) {
+      acme2.getCertificate(options, function (fullchainPem) {
-        console.log('[acme-v2] fullchain.pem:');
+        console.log('[acme-v2] A fullchain.pem:');
+        console.log(fullchainPem);
+      }).then(function (fullchainPem) {
+        console.log('[acme-v2] B fullchain.pem:');
         console.log(fullchainPem);
       });
     });