moved le certificate gen to certonly flag, added https flag

Author: FrancYescO

dist/http/index.js

@@ -1,16 +1,12 @@
-var ACME, Duplex, args, createHttpsServer, createServer, cwmp, duckdns, existsSync, file, path, readFileSync, ref, route, statSync;
+var Duplex, args, createHttpsServer, createServer, cwmp, file, path, readFileSync, route;
 
 Duplex = require('stream').Duplex;
 
 createServer = require('http').createServer;
 
 createHttpsServer = require('https').createServer;
 
-ref = require('fs'), readFileSync = ref.readFileSync, existsSync = ref.existsSync, statSync = ref.statSync;
-
-ACME = require('@root/acme');
-
-duckdns = require('acme-dns-01-duckdns');
+readFileSync = require('fs').readFileSync;
 
 path = require('path');
 
@@ -23,7 +19,7 @@ args = require('../args');
 cwmp = require('./cwmp');
 
 module.exports = function(ip, port, url) {
-  var acme, dns01, domain, e, srv;
+  var e, httpsoptions, srv;
   if (args.file) {
     file.name = path.basename(args.file);
     try {
@@ -58,119 +54,30 @@ module.exports = function(ip, port, url) {
     res.writeHead(200);
     return res.end().post('/', cwmp(url));
   });
-  if (url.indexOf("https://") !== -1) {
-    domain = new URL(url).hostname;
-    if (args.duckdnstoken) {
-      dns01 = duckdns.create({
-        baseUrl: 'https://www.duckdns.org/update',
-        token: args.duckdnstoken
-      });
-      console.log("Requesting HTTPS certificate to LE via duckdns...");
-      require('http-request').get('https://www.duckdns.org/update?domains=' + domain + '&token=' + args.duckdnstoken + '&ip=' + ip, function(err, res) {
-        if (err) {
-          return console.log("Error updating duckdns domain IP!!!");
-        }
-      });
-    } else {
-      console.log("No duckdns token!!");
-    }
-    acme = ACME.create({
-      maintainerEmail: 'test@gmail.com',
-      packageAgent: 'tch-exploit/v1.0'
-    });
-    acme.init('https://acme-v02.api.letsencrypt.org/directory').then(function(r) {
-      var Keypairs;
-      Keypairs = require('@root/keypairs');
-      return Keypairs.generate({
-        kty: 'EC',
-        format: 'jwk'
-      }).then(function(accountKeypair) {
-        return acme.accounts.create({
-          subscriberEmail: 'test1@gmail.com',
-          agreeToTerm: true,
-          accountKey: accountKeypair["private"]
-        }).then(function(account) {
-          return Keypairs.generate({
-            kty: 'RSA',
-            format: 'jwk'
-          }).then(function(serverKeypair) {
-            return Keypairs["export"]({
-              jwk: serverKeypair["private"]
-            }).then(function(privateKey) {
-              var CSR, PEM, punycode;
-              CSR = require('@root/csr');
-              PEM = require('@root/pem');
-              punycode = require('punycode');
-              return CSR.csr({
-                jwk: serverKeypair["private"],
-                domains: [punycode.toASCII(domain)],
-                encoding: 'der'
-              }).then(function(csrDer) {
-                var csr;
-                csr = PEM.packBlock({
-                  type: 'CERTIFICATE REQUEST',
-                  bytes: csrDer
-                });
-                return acme.certificates.create({
-                  account: account,
-                  accountKey: accountKeypair["private"],
-                  csr: csr,
-                  domains: [domain],
-                  challenges: {
-                    'dns-01': dns01
-                  }
-                }).then(function(pems) {
-                  var httpsoptions, srv;
-                  console.log("HTTPS certificate received!");
-                  console.log(privateKey);
-                  console.log("Cert:");
-                  console.log(pems.cert);
-                  httpsoptions = {
-                    key: privateKey,
-                    cert: pems.cert
-                  };
-                  srv = createHttpsServer(httpsoptions, route);
-                  if (port === 80) {
-                    port = 443;
-                  }
-                  srv.keepAliveTimeout = 30000;
-                  srv.on('error', function(e) {
-                    var ref1;
-                    if ((ref1 = e.code) === 'EADDRINUSE' || ref1 === 'EADDRNOTAVAIL') {
-                      console.log(e.code + ', retrying...');
-                      return setTimeout(function() {
-                        srv.close();
-                        return srv.listen(port);
-                      }, 1000);
-                    } else {
-                      return console.error(e);
-                    }
-                  });
-                  srv.listen(port);
-                  return console.log("Started HTTPS server...");
-                });
-              });
-            });
-          });
-        });
-      });
-    });
+  if (args.https) {
+    console.log("Starting HTTPS server...");
+    httpsoptions = {
+      key: readFileSync('./key.key'),
+      cert: readFileSync('./cert.cert')
+    };
+    srv = createHttpsServer(httpsoptions, route);
   } else {
+    console.log("Starting HTTP server...");
     srv = createServer(route);
-    srv.keepAliveTimeout = 30000;
-    srv.on('error', function(e) {
-      var ref1;
-      if ((ref1 = e.code) === 'EADDRINUSE' || ref1 === 'EADDRNOTAVAIL') {
-        console.log(e.code + ', retrying...');
-        return setTimeout(function() {
-          srv.close();
-          return srv.listen(port);
-        }, 1000);
-      } else {
-        return console.error(e);
-      }
-    });
-    srv.listen(port);
   }
+  srv.keepAliveTimeout = 30000;
+  srv.on('error', function(e) {
+    var ref;
+    if ((ref = e.code) === 'EADDRINUSE' || ref === 'EADDRNOTAVAIL') {
+      console.log(e.code + ', retrying...');
+      return setTimeout(function() {
+        srv.close();
+        return srv.listen(port);
+      }, 1000);
+    } else {
+      return console.error(e);
+    }
+  });
+  srv.listen(port);
   return srv;
 };

dist/http/lecerts.js

@@ -0,0 +1,88 @@
+var ACME, args, duckdns, existsSync, ref, writeFileSync;
+
+ref = require('fs'), writeFileSync = ref.writeFileSync, existsSync = ref.existsSync;
+
+ACME = require('@root/acme');
+
+duckdns = require('acme-dns-01-duckdns');
+
+args = require('../args');
+
+module.exports = function(domain) {
+  var acme, dns01;
+  if (existsSync('./key.key') && existsSync('./cert.cert')) {
+    console.log("key.key and key.key already exists!");
+    return;
+  }
+  if (args.duckdnstoken) {
+    dns01 = duckdns.create({
+      baseUrl: 'https://www.duckdns.org/update',
+      token: args.duckdnstoken
+    });
+    console.log("Requesting HTTPS certificate to LE via duckdns...");
+  } else {
+    console.log("No duckdns token!!");
+    return;
+  }
+  acme = ACME.create({
+    maintainerEmail: 'tch-exploit@github.com',
+    packageAgent: 'tch-exploit/v1.0'
+  });
+  return acme.init('https://acme-staging-v02.api.letsencrypt.org/directory').then(function(r) {
+    var Keypairs;
+    Keypairs = require('@root/keypairs');
+    return Keypairs.generate({
+      kty: 'EC',
+      format: 'jwk'
+    }).then(function(accountKeypair) {
+      return acme.accounts.create({
+        subscriberEmail: 'tch-exploit@github.com',
+        agreeToTerm: true,
+        accountKey: accountKeypair["private"]
+      }).then(function(account) {
+        console.log("Starting LetsEncrypt DNS challenge via duckdns...");
+        return Keypairs.generate({
+          kty: 'RSA',
+          format: 'jwk'
+        }).then(function(serverKeypair) {
+          return Keypairs["export"]({
+            jwk: serverKeypair["private"]
+          }).then(function(privateKey) {
+            var CSR, PEM, punycode;
+            CSR = require('@root/csr');
+            PEM = require('@root/pem');
+            punycode = require('punycode');
+            return CSR.csr({
+              jwk: serverKeypair["private"],
+              domains: [punycode.toASCII(domain)],
+              encoding: 'der'
+            }).then(function(csrDer) {
+              var csr;
+              csr = PEM.packBlock({
+                type: 'CERTIFICATE REQUEST',
+                bytes: csrDer
+              });
+              return acme.certificates.create({
+                account: account,
+                accountKey: accountKeypair["private"],
+                csr: csr,
+                domains: [domain],
+                challenges: {
+                  'dns-01': dns01
+                }
+              }).then(function(pems) {
+                console.log("Key:");
+                console.log(privateKey);
+                console.log("Cert:");
+                console.log(pems.cert);
+                console.log("Certificate received, saving to key.key and cert.cert!");
+                writeFileSync('./key.key', privateKey);
+                return writeFileSync('./cert.cert', pems.cert);
+              });
+            });
+          });
+        });
+      });
+    });
+  });
+};

dist/index.js

@@ -1,4 +1,4 @@
-var args, ask, dhcpd, httpd, ip, pkg, port, rl, servers, tftp;
+var args, ask, dhcpd, httpd, ip, lecerts, pkg, port, rl, servers, tftp;
 
 pkg = require('../package.json');
 
@@ -14,6 +14,8 @@ dhcpd = require('./dhcp');
 
 httpd = require('./http');
 
+lecerts = require('./http/lecerts');
+
 port = require('./get-port');
 
 tftp = require('./tftp');
@@ -24,6 +26,8 @@ if (args.tftp) {
   servers.push.apply(servers, tftp(args));
 } else if (args.dhcponly) {
   servers.push(dhcpd(ip, args.acsurl, args.acspass));
+} else if (args.certonly) {
+  lecerts(new URL(args.acsurl).hostname);
 } else {
   ask(ip).then(port).then(function(p) {
     var u, url;