0568e81701
This adds an implementation of node discovery via DNS TXT records to the go-ethereum library. The implementation doesn't match EIP-1459 exactly, the main difference being that this implementation uses separate merkle trees for tree links and ENRs. The EIP will be updated to match p2p/dnsdisc. To maintain DNS trees, cmd/devp2p provides a frontend for the p2p/dnsdisc library. The new 'dns' subcommands can be used to create, sign and deploy DNS discovery trees.
158 lines
5.8 KiB
Go
158 lines
5.8 KiB
Go
package cloudflare
|
|
|
|
import (
|
|
"encoding/json"
|
|
"time"
|
|
|
|
"github.com/pkg/errors"
|
|
)
|
|
|
|
// ZoneCustomSSL represents custom SSL certificate metadata.
|
|
type ZoneCustomSSL struct {
|
|
ID string `json:"id"`
|
|
Hosts []string `json:"hosts"`
|
|
Issuer string `json:"issuer"`
|
|
Signature string `json:"signature"`
|
|
Status string `json:"status"`
|
|
BundleMethod string `json:"bundle_method"`
|
|
GeoRestrictions ZoneCustomSSLGeoRestrictions `json:"geo_restrictions"`
|
|
ZoneID string `json:"zone_id"`
|
|
UploadedOn time.Time `json:"uploaded_on"`
|
|
ModifiedOn time.Time `json:"modified_on"`
|
|
ExpiresOn time.Time `json:"expires_on"`
|
|
Priority int `json:"priority"`
|
|
KeylessServer KeylessSSL `json:"keyless_server"`
|
|
}
|
|
|
|
// ZoneCustomSSLGeoRestrictions represents the parameter to create or update
|
|
// geographic restrictions on a custom ssl certificate.
|
|
type ZoneCustomSSLGeoRestrictions struct {
|
|
Label string `json:"label"`
|
|
}
|
|
|
|
// zoneCustomSSLResponse represents the response from the zone SSL details endpoint.
|
|
type zoneCustomSSLResponse struct {
|
|
Response
|
|
Result ZoneCustomSSL `json:"result"`
|
|
}
|
|
|
|
// zoneCustomSSLsResponse represents the response from the zone SSL list endpoint.
|
|
type zoneCustomSSLsResponse struct {
|
|
Response
|
|
Result []ZoneCustomSSL `json:"result"`
|
|
}
|
|
|
|
// ZoneCustomSSLOptions represents the parameters to create or update an existing
|
|
// custom SSL configuration.
|
|
type ZoneCustomSSLOptions struct {
|
|
Certificate string `json:"certificate"`
|
|
PrivateKey string `json:"private_key"`
|
|
BundleMethod string `json:"bundle_method,omitempty"`
|
|
GeoRestrictions ZoneCustomSSLGeoRestrictions `json:"geo_restrictions,omitempty"`
|
|
Type string `json:"type,omitempty"`
|
|
}
|
|
|
|
// ZoneCustomSSLPriority represents a certificate's ID and priority. It is a
|
|
// subset of ZoneCustomSSL used for patch requests.
|
|
type ZoneCustomSSLPriority struct {
|
|
ID string `json:"ID"`
|
|
Priority int `json:"priority"`
|
|
}
|
|
|
|
// CreateSSL allows you to add a custom SSL certificate to the given zone.
|
|
//
|
|
// API reference: https://api.cloudflare.com/#custom-ssl-for-a-zone-create-ssl-configuration
|
|
func (api *API) CreateSSL(zoneID string, options ZoneCustomSSLOptions) (ZoneCustomSSL, error) {
|
|
uri := "/zones/" + zoneID + "/custom_certificates"
|
|
res, err := api.makeRequest("POST", uri, options)
|
|
if err != nil {
|
|
return ZoneCustomSSL{}, errors.Wrap(err, errMakeRequestError)
|
|
}
|
|
var r zoneCustomSSLResponse
|
|
if err := json.Unmarshal(res, &r); err != nil {
|
|
return ZoneCustomSSL{}, errors.Wrap(err, errUnmarshalError)
|
|
}
|
|
return r.Result, nil
|
|
}
|
|
|
|
// ListSSL lists the custom certificates for the given zone.
|
|
//
|
|
// API reference: https://api.cloudflare.com/#custom-ssl-for-a-zone-list-ssl-configurations
|
|
func (api *API) ListSSL(zoneID string) ([]ZoneCustomSSL, error) {
|
|
uri := "/zones/" + zoneID + "/custom_certificates"
|
|
res, err := api.makeRequest("GET", uri, nil)
|
|
if err != nil {
|
|
return nil, errors.Wrap(err, errMakeRequestError)
|
|
}
|
|
var r zoneCustomSSLsResponse
|
|
if err := json.Unmarshal(res, &r); err != nil {
|
|
return nil, errors.Wrap(err, errUnmarshalError)
|
|
}
|
|
return r.Result, nil
|
|
}
|
|
|
|
// SSLDetails returns the configuration details for a custom SSL certificate.
|
|
//
|
|
// API reference: https://api.cloudflare.com/#custom-ssl-for-a-zone-ssl-configuration-details
|
|
func (api *API) SSLDetails(zoneID, certificateID string) (ZoneCustomSSL, error) {
|
|
uri := "/zones/" + zoneID + "/custom_certificates/" + certificateID
|
|
res, err := api.makeRequest("GET", uri, nil)
|
|
if err != nil {
|
|
return ZoneCustomSSL{}, errors.Wrap(err, errMakeRequestError)
|
|
}
|
|
var r zoneCustomSSLResponse
|
|
if err := json.Unmarshal(res, &r); err != nil {
|
|
return ZoneCustomSSL{}, errors.Wrap(err, errUnmarshalError)
|
|
}
|
|
return r.Result, nil
|
|
}
|
|
|
|
// UpdateSSL updates (replaces) a custom SSL certificate.
|
|
//
|
|
// API reference: https://api.cloudflare.com/#custom-ssl-for-a-zone-update-ssl-configuration
|
|
func (api *API) UpdateSSL(zoneID, certificateID string, options ZoneCustomSSLOptions) (ZoneCustomSSL, error) {
|
|
uri := "/zones/" + zoneID + "/custom_certificates/" + certificateID
|
|
res, err := api.makeRequest("PATCH", uri, options)
|
|
if err != nil {
|
|
return ZoneCustomSSL{}, errors.Wrap(err, errMakeRequestError)
|
|
}
|
|
var r zoneCustomSSLResponse
|
|
if err := json.Unmarshal(res, &r); err != nil {
|
|
return ZoneCustomSSL{}, errors.Wrap(err, errUnmarshalError)
|
|
}
|
|
return r.Result, nil
|
|
}
|
|
|
|
// ReprioritizeSSL allows you to change the priority (which is served for a given
|
|
// request) of custom SSL certificates associated with the given zone.
|
|
//
|
|
// API reference: https://api.cloudflare.com/#custom-ssl-for-a-zone-re-prioritize-ssl-certificates
|
|
func (api *API) ReprioritizeSSL(zoneID string, p []ZoneCustomSSLPriority) ([]ZoneCustomSSL, error) {
|
|
uri := "/zones/" + zoneID + "/custom_certificates/prioritize"
|
|
params := struct {
|
|
Certificates []ZoneCustomSSLPriority `json:"certificates"`
|
|
}{
|
|
Certificates: p,
|
|
}
|
|
res, err := api.makeRequest("PUT", uri, params)
|
|
if err != nil {
|
|
return nil, errors.Wrap(err, errMakeRequestError)
|
|
}
|
|
var r zoneCustomSSLsResponse
|
|
if err := json.Unmarshal(res, &r); err != nil {
|
|
return nil, errors.Wrap(err, errUnmarshalError)
|
|
}
|
|
return r.Result, nil
|
|
}
|
|
|
|
// DeleteSSL deletes a custom SSL certificate from the given zone.
|
|
//
|
|
// API reference: https://api.cloudflare.com/#custom-ssl-for-a-zone-delete-an-ssl-certificate
|
|
func (api *API) DeleteSSL(zoneID, certificateID string) error {
|
|
uri := "/zones/" + zoneID + "/custom_certificates/" + certificateID
|
|
if _, err := api.makeRequest("DELETE", uri, nil); err != nil {
|
|
return errors.Wrap(err, errMakeRequestError)
|
|
}
|
|
return nil
|
|
}
|