packages/ui/certd-server/src/plugins/plugin-plus/esxi/plugin-deploy-to-esxi.ts

import { IsTaskPlugin, pluginGroups, RunStrategy, TaskInput } from "@certd/pipeline";
import { CertApplyPluginNames, CertInfo } from "@certd/plugin-cert";
import { CertReader } from "@certd/plugin-lib";
import { SshAccess } from "../../plugin-lib/ssh/ssh-access.js";
import { SshClient } from "../../plugin-lib/ssh/ssh.js";
import { AbstractPlusTaskPlugin } from "@certd/plugin-plus";
@IsTaskPlugin({
  name: "EsxiDeployCert", //这个名字Esxi不要改，兼容用户旧数据，以前写错了
  title: "ESXi-部署证书到ESXi",
  icon: "svg:icon-lucky",
  group: pluginGroups.host.key,
  default: {
    strategy: {
      runStrategy: RunStrategy.SkipWhenSucceed,
    },
  },
  needPlus: true,
})
export class EsxiDeployCertPlugin extends AbstractPlusTaskPlugin {
  //证书选择，此项必须要有
  @TaskInput({
    title: "域名证书",
    helper: "请选择前置任务输出的域名证书",
    component: {
      name: "output-selector",
      from: [...CertApplyPluginNames],
    },
    required: true,
  })
  cert!: CertInfo;

  // @TaskInput(createCertDomainGetterInputDefine({ props: { required: false } }))
  // certDomains!: string[];

  //授权选择框
  @TaskInput({
    title: "主机SSH授权",
    component: {
      name: "access-selector",
      type: "ssh",
    },
    required: true,
  })
  accessId!: string;


  async onInstance() { }

  async execute(): Promise<void> {
    const sshConf = await this.getAccess<SshAccess>(this.accessId);
    const sshClient = new SshClient(this.logger);

    // /etc/vmware/ssl/rui.crt
    // /etc/vmware/ssl/rui.key
    const certReader = new CertReader(this.cert);

    await certReader.readCertFile({
      logger: this.logger,
      handle: async (ctx) => {
        const crtPath = ctx.tmpCrtPath;
        const keyPath = ctx.tmpKeyPath;
        await sshClient.uploadFiles({
          connectConf: sshConf,
          transports: [
            {
              localPath: crtPath,
              remotePath: "/etc/vmware/ssl/rui.crt",
            },
            {
              localPath: keyPath,
              remotePath: "/etc/vmware/ssl/rui.key",
            },
          ],
          mkdirs: true,
        });
      },
    });

    const cmd = `/etc/init.d/hostd restart
/etc/init.d/vpxa restart`

    await sshClient.exec({
      connectConf: sshConf,
      script: cmd,
    });

    this.logger.info(`证书部署完成`);
  }
}

new EsxiDeployCertPlugin();
perf: 支持部署到exsi，openwrt 2026-01-08 00:11:46 +08:00			`import { IsTaskPlugin, pluginGroups, RunStrategy, TaskInput } from "@certd/pipeline";`
			`import { CertApplyPluginNames, CertInfo } from "@certd/plugin-cert";`
fix: 修复自定义插件name丢失author导致找不到插件的bug 2026-01-15 23:43:07 +08:00			`import { CertReader } from "@certd/plugin-lib";`
perf: 支持部署到exsi，openwrt 2026-01-08 00:11:46 +08:00			`import { SshAccess } from "../../plugin-lib/ssh/ssh-access.js";`
			`import { SshClient } from "../../plugin-lib/ssh/ssh.js";`
fix: 修复自定义插件name丢失author导致找不到插件的bug 2026-01-15 23:43:07 +08:00			`import { AbstractPlusTaskPlugin } from "@certd/plugin-plus";`
perf: 支持部署到exsi，openwrt 2026-01-08 00:11:46 +08:00			`@IsTaskPlugin({`
chore: 修改esxi的名字 2026-01-22 12:02:34 +08:00			`name: "EsxiDeployCert", //这个名字Esxi不要改，兼容用户旧数据，以前写错了`
			`title: "ESXi-部署证书到ESXi",`
perf: 支持部署到exsi，openwrt 2026-01-08 00:11:46 +08:00			`icon: "svg:icon-lucky",`
			`group: pluginGroups.host.key,`
			`default: {`
			`strategy: {`
			`runStrategy: RunStrategy.SkipWhenSucceed,`
			`},`
			`},`
			`needPlus: true,`
			`})`
chore: 修改esxi的名字 2026-01-22 12:02:34 +08:00			`export class EsxiDeployCertPlugin extends AbstractPlusTaskPlugin {`
perf: 支持部署到exsi，openwrt 2026-01-08 00:11:46 +08:00			`//证书选择，此项必须要有`
			`@TaskInput({`
			`title: "域名证书",`
			`helper: "请选择前置任务输出的域名证书",`
			`component: {`
			`name: "output-selector",`
			`from: [...CertApplyPluginNames],`
			`},`
			`required: true,`
			`})`
			`cert!: CertInfo;`

			`// @TaskInput(createCertDomainGetterInputDefine({ props: { required: false } }))`
			`// certDomains!: string[];`

			`//授权选择框`
			`@TaskInput({`
			`title: "主机SSH授权",`
			`component: {`
			`name: "access-selector",`
			`type: "ssh",`
			`},`
			`required: true,`
			`})`
			`accessId!: string;`


			`async onInstance() { }`

			`async execute(): Promise<void> {`
			`const sshConf = await this.getAccess<SshAccess>(this.accessId);`
			`const sshClient = new SshClient(this.logger);`

			`// /etc/vmware/ssl/rui.crt`
			`// /etc/vmware/ssl/rui.key`
			`const certReader = new CertReader(this.cert);`

			`await certReader.readCertFile({`
			`logger: this.logger,`
			`handle: async (ctx) => {`
			`const crtPath = ctx.tmpCrtPath;`
			`const keyPath = ctx.tmpKeyPath;`
fix: esxi部署失败的bug 2026-02-09 13:49:00 +08:00			`await sshClient.uploadFiles({`
perf: 支持部署到exsi，openwrt 2026-01-08 00:11:46 +08:00			`connectConf: sshConf,`
			`transports: [`
			`{`
			`localPath: crtPath,`
			`remotePath: "/etc/vmware/ssl/rui.crt",`
			`},`
			`{`
			`localPath: keyPath,`
			`remotePath: "/etc/vmware/ssl/rui.key",`
			`},`
			`],`
			`mkdirs: true,`
			`});`
			`},`
			`});`

			const cmd = `/etc/init.d/hostd restart
			/etc/init.d/vpxa restart`

			`await sshClient.exec({`
			`connectConf: sshConf,`
			`script: cmd,`
			`});`

			this.logger.info(`证书部署完成`);
			`}`
			`}`

chore: 修改esxi的名字 2026-01-22 12:02:34 +08:00			`new EsxiDeployCertPlugin();`