perf: 支持从阿里云商用证书订单中获取证书

packages/plugins/plugin-cert/src/plugin/cert-plugin/getter/index.ts

@@ -0,0 +1,149 @@
+import { IsTaskPlugin, PageSearch, pluginGroups, RunStrategy, Step, TaskInput, TaskOutput } from "@certd/pipeline";
+import type { CertInfo } from "../acme.js";
+import { CertReader } from "../cert-reader.js";
+import { CertApplyBasePlugin } from "../base.js";
+import { AliyunAccess, createRemoteSelectInputDefine } from "@certd/plugin-lib";
+
+export { CertReader };
+export type { CertInfo };
+
+@IsTaskPlugin({
+  name: "CertApplyGetFormAliyun",
+  icon: "ph:certificate",
+  title: "获取阿里云订阅证书",
+  group: pluginGroups.cert.key,
+  desc: "从阿里云拉取订阅模式的商用证书",
+  default: {
+    strategy: {
+      runStrategy: RunStrategy.AlwaysRun,
+    },
+  },
+})
+export class CertApplyGetFormAliyunPlugin extends CertApplyBasePlugin {
+  @TaskInput({
+    title: "Access授权",
+    helper: "阿里云授权AccessKeyId、AccessKeySecret",
+    component: {
+      name: "access-selector",
+      type: "aliyun",
+    },
+    required: true,
+  })
+  accessId!: string;
+
+  @TaskInput(
+    createRemoteSelectInputDefine({
+      title: "证书订单ID",
+      helper: "订阅模式的证书订单Id",
+      typeName: "CertApplyGetFormAliyun",
+      action: CertApplyGetFormAliyunPlugin.prototype.onGetOrderList.name,
+    })
+  )
+  orderId!: number;
+
+  async onInit(): Promise<void> {}
+
+  async doCertApply(): Promise<CertReader> {
+    const access = await this.getAccess<AliyunAccess>(this.accessId);
+    const client = await access.getClient("cas.aliyuncs.com");
+    const certDetail = await this.getCertDetail(client, this.orderId);
+    return certDetail;
+  }
+
+  async getCertDetail(client: any, certId: any) {
+    const res = await client.doRequest({
+      // 接口名称
+      // 接口名称
+      action: "GetUserCertificateDetail",
+      // 接口版本
+      version: "2020-04-07",
+      // 接口协议
+      protocol: "HTTPS",
+      // 接口 HTTP 方法
+      method: "POST",
+      authType: "AK",
+      style: "RPC",
+      // 接口 PATH
+      pathname: `/`,
+      data: {
+        query: {
+          CertId: certId,
+        },
+      },
+    });
+
+    const crt = res.Cert;
+    const key = res.Key;
+
+    return new CertReader({
+      crt,
+      key,
+      csr: "",
+    });
+  }
+
+  async getCertificateState(client: any, orderId: any) {
+    const res = await client.doRequest({
+      // 接口名称
+      action: "DescribeCertificateState",
+      // 接口版本
+      version: "2020-04-07",
+      // 接口协议
+      protocol: "HTTPS",
+      // 接口 HTTP 方法
+      method: "POST",
+      authType: "AK",
+      style: "RPC",
+      // 接口 PATH
+      pathname: `/`,
+      data: {
+        query: {
+          OrderId: orderId,
+        },
+      },
+    });
+
+    return res.CertId;
+  }
+
+  async onGetOrderList(req: PageSearch) {
+    if (!this.accessId) {
+      throw new Error("请先选择Access授权");
+    }
+    const access = await this.getAccess<AliyunAccess>(this.accessId);
+
+    const client = await access.getClient("cas.aliyuncs.com");
+
+    const res = await client.doRequest({
+      // 接口名称
+      action: "ListUserCertificateOrder",
+      // 接口版本
+      version: "2020-04-07",
+      method: "POST",
+      authType: "AK",
+      style: "RPC",
+      // 接口 PATH
+      pathname: `/`,
+      data: {
+        query: {
+          Status: "ISSUED",
+        },
+      },
+    });
+    const list = res?.CertificateOrderList || [];
+    if (!list || list.length === 0) {
+      throw new Error("没有找到已签发的证书订单");
+    }
+
+    return list.map((item: any) => {
+      const label = `${item.Domain}<${item.OrderId}>`;
+      return {
+        label: label,
+        value: item.OrderId,
+        Domain: item.Domain,
+      };
+    });
+  }
+}
+
+new CertApplyGetFormAliyunPlugin();

packages/ui/certd-client/src/locales/langs/en-US/certd.ts

@@ -220,6 +220,7 @@ export default {
     selectTitle: "Certificate Apply Plugin",
     jsAcme: "JS-ACME: Easy to use, powerful features [Recommended]",
     legoAcme: "Lego-ACME: Based on Lego, supports a wide range of DNS providers, suitable for users familiar with Lego",
+    aliyunOrder: "Aliyun-Order: Get certificate from Aliyun certificate order",
   },
   pipelineForm: {
     createTitle: "Create Certificate Pipeline",

packages/ui/certd-client/src/locales/langs/zh-CN/certd.ts

@@ -225,6 +225,7 @@ export default {
     selectTitle: "证书申请插件",
     jsAcme: "JS-ACME：使用简单方便，功能强大【推荐】",
     legoAcme: "Lego-ACME：基于Lego实现，支持海量DNS提供商，熟悉LEGO的用户可以使用",
+    aliyunOrder: "Aliyun-Order：从阿里云证书订单中获取证书更新",
   },
   pipelineForm: {
     createTitle: "创建证书流水线",

packages/ui/certd-client/src/views/certd/pipeline/certd-form/use.tsx

@@ -163,6 +163,7 @@ export function useCertPipelineCreator() {
               data: [
                 { value: "CertApply", label: "JS-ACME" },
                 { value: "CertApplyLego", label: "Lego-ACME" },
+                { value: "CertApplyAliyun", label: "Aliyun-Order" },
               ],
             }),
             form: {
@@ -174,6 +175,7 @@ export function useCertPipelineCreator() {
                     <ul>
                       <li>{t("certd.plugin.jsAcme")}</li>
                       <li>{t("certd.plugin.legoAcme")}</li>
+                      <li>{t("certd.plugin.aliyunOrder")}</li>
                     </ul>
                   );
                 },
@@ -201,7 +203,7 @@ export function useCertPipelineCreator() {
               component: {
                 name: "cron-editor",
                 vModel: "modelValue",
-                placeholder: "0 0 4 * * *",
+                placeholder: "0 0 4 * * * (表示凌晨4点执行)",
               },
               helper: t("certd.pipelineForm.triggerCronHelper"),
               order: 100,