szakatsa/Automatic-Parking
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Certificate Manager?

Browse Source
This commit is contained in:
Szakáts Alpár
2025-08-17 16:13:39 +02:00
parent 947a1313c8
commit dee65c9ee4
9 changed files with 137 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

45
Source/CertificateManager/Worker.cs Normal file
View File

@@ -0,0 +1,45 @@
using System.Diagnostics.CodeAnalysis;
using Certes;
using Certes.Acme;
using CertificateManager.Models;
namespace CertificateManager;
public class Worker(ILogger<Worker> logger, TimeProvider timeProvider, IConfiguration configuration) : BackgroundService
{
[UnconditionalSuppressMessage("Trimming", "IL2026:Members annotated with 'RequiresUnreferencedCodeAttribute' require dynamic access otherwise can break functionality when trimming application code", Justification = "<Pending>")]
protected override async Task ExecuteAsync(CancellationToken stoppingToken)
{
logger.LogTrace("Certificate manager started");
// Local keys and CA
string localDomain = configuration.GetValue("localDomain", "local");
string keysPath = configuration.GetValue("keys_path", "/Certificates/Keys");
string caPath = configuration.GetValue("ca_path", "/Certificates/CA");
string localPath = configuration.GetValue("local_wildcard_path", "/Certificates/Local");
// Real CA, real domain
string domain = configuration.GetValue("domain", "automatic-parking.app");
string wildcardPath = configuration.GetValue("wildcard_path", "/Certificates/Wildcard");
string acmeEmail = configuration.GetValue("acmeEmail", "");
logger.LogTrace("Acme email provided: {acmeEmail}", acmeEmail);
string nameComUsername = configuration.GetValue("nameComUsername", "");
string nameComToken = configuration.GetValue("nameComAPIToken", "");
string nameComServer = configuration.GetValue("nameComServer", "https://api.name.com/v4");
NameComCredentials nameComCredentials = new NameComCredentials(nameComUsername, nameComToken, nameComServer);
logger.LogTrace("Name.com credentials provided: {nameComUsername} (with token of {nameComTokenLength} characters)", nameComUsername, nameComToken.Length);
// Generate keys, CA and certificates
var keys = GenerateKeys(keysPath, "private.pem", "public.pem", "chain.pem");
var ca = CreateRootCA(keys, caPath, "private.pem", "public.pem");
var local = CreateWildcardCertificate(ca, localDomain, localPath, "private.pem", "public.pem", "chain.pem");
var external = AcquireWildcardCertificate(domain, nameComCredentials, wildcardPath, "private.pem", "public.pem", "chain.pem");
DateTimeOffset expiry = external.Expires;
logger.LogTrace("Wildcard certificate will expire on {expiry}", expiry);
await Task.CompletedTask;
}
}