Class: Acme::Client

Inherits:

Object

• Object
• Acme::Client

Defined in:

lib/acme-client.rb,
lib/acme/client.rb,
lib/acme/client/version.rb

Defined Under Namespace

Modules: Resources Classes: Certificate, CertificateRequest, Crypto, Error, FaradayMiddleware

Constant Summary

DEFAULT_ENDPOINT =

'http://127.0.0.1:4000'

DIRECTORY_DEFAULT =

{
  'new-authz' => '/acme/new-authz',
  'new-cert' => '/acme/new-cert',
  'new-reg' => '/acme/new-reg',
  'revoke-cert' => '/acme/revoke-cert'
}

VERSION =

'0.2.3'

Instance Attribute Summary

• #nonces ⇒ Object readonly

  Returns the value of attribute nonces.

• #operation_endpoints ⇒ Object readonly

  Returns the value of attribute operation_endpoints.

• #private_key ⇒ Object readonly

  Returns the value of attribute private_key.

Class Method Summary

• .revoke_certificate(certificate, *arguments) ⇒ Object

Instance Method Summary

• #authorize(domain:) ⇒ Object
• #connection ⇒ Object
• #initialize(private_key:, endpoint: DEFAULT_ENDPOINT, directory_uri: nil) ⇒ Client constructor

  A new instance of Client.

• #new_certificate(csr) ⇒ Object
• #register(contact:) ⇒ Object
• #revoke_certificate(certificate) ⇒ Object

Constructor Details

#initialize(private_key:, endpoint: DEFAULT_ENDPOINT, directory_uri: nil) ⇒ Client

Returns a new instance of Client.

# File 'lib/acme/client.rb', line 12

def initialize(private_key:, endpoint: DEFAULT_ENDPOINT, directory_uri: nil)
  @endpoint, @private_key, @directory_uri = endpoint, private_key, directory_uri
  @nonces ||= []
  load_directory!
end

Instance Attribute Details

#nonces ⇒ Object (readonly)

Returns the value of attribute nonces.

# File 'lib/acme/client.rb', line 18

def nonces
  @nonces
end

#operation_endpoints ⇒ Object (readonly)

Returns the value of attribute operation_endpoints.

# File 'lib/acme/client.rb', line 18

def operation_endpoints
  @operation_endpoints
end

#private_key ⇒ Object (readonly)

Returns the value of attribute private_key.

# File 'lib/acme/client.rb', line 18

def private_key
  @private_key
end

Class Method Details

.revoke_certificate(certificate, *arguments) ⇒ Object

# File 'lib/acme/client.rb', line 59

def self.revoke_certificate(certificate, *arguments)
  client = new(*arguments)
  client.revoke_certificate(certificate)
end

Instance Method Details

#authorize(domain:) ⇒ Object

# File 'lib/acme/client.rb', line 29

def authorize(domain:)
  payload = {
    resource: 'new-authz',
    identifier: {
      type: 'dns',
      value: domain
    }
  }

  response = connection.post(@operation_endpoints.fetch('new-authz'), payload)
  ::Acme::Client::Resources::Authorization.new(self, response)
end

#connection ⇒ Object

# File 'lib/acme/client.rb', line 64

def connection
  @connection ||= Faraday.new(@endpoint) do |configuration|
    configuration.use Acme::Client::FaradayMiddleware, client: self
    configuration.adapter Faraday.default_adapter
  end
end

#new_certificate(csr) ⇒ Object

# File 'lib/acme/client.rb', line 42

def new_certificate(csr)
  payload = {
    resource: 'new-cert',
    csr: Base64.urlsafe_encode64(csr.to_der)
  }

  response = connection.post(@operation_endpoints.fetch('new-cert'), payload)
  ::Acme::Client::Certificate.new(OpenSSL::X509::Certificate.new(response.body), fetch_chain(response), csr)
end

#register(contact:) ⇒ Object

# File 'lib/acme/client.rb', line 20

def register(contact:)
  payload = {
    resource: 'new-reg', contact: Array(contact)
  }

  response = connection.post(@operation_endpoints.fetch('new-reg'), payload)
  ::Acme::Client::Resources::Registration.new(self, response)
end

#revoke_certificate(certificate) ⇒ Object

# File 'lib/acme/client.rb', line 52

def revoke_certificate(certificate)
  payload = { resource: 'revoke-cert', certificate: Base64.urlsafe_encode64(certificate.to_der) }
  endpoint = @operation_endpoints.fetch('revoke-cert')
  response = connection.post(endpoint, payload)
  response.success?
end