perf: 支持部署到exsi，openwrt

packages/ui/certd-server/src/modules/auto/auto-b-load-plugins.ts

@@ -16,7 +16,14 @@ export class AutoBLoadPlugins {
     if (process.env.certd_plugin_loadmode === "metadata") {
       await this.pluginService.registerFromLocal("./metadata")
     }else{
-      await import("../../plugins/index.js")
+      // await import("../../plugins/index.js")
+      const fs = await import("fs");
+      const list = fs.readdirSync("../../plugins");
+      for (const file of list) {
+        if (file.endsWith("index.js")) {
+          await import(`../../plugins/${file}`);
+        }
+      }
     }
     // await import("../../plugins/index.js")
     await this.pluginService.registerFromDb()

packages/ui/certd-server/src/plugins/index.ts

@@ -1,47 +1,47 @@
-export * from './plugin-aliyun/index.js';
-export * from './plugin-tencent/index.js';
-export * from './plugin-host/index.js';
-export * from './plugin-huawei/index.js';
-export * from './plugin-demo/index.js';
-export * from './plugin-other/index.js';
-export * from './plugin-west/index.js';
-export * from './plugin-doge/index.js';
-export * from './plugin-qiniu/index.js';
-export * from './plugin-woai/index.js';
-export * from './plugin-cachefly/index.js';
-export * from './plugin-gcore/index.js';
-export * from './plugin-qnap/index.js';
-export * from './plugin-aws/index.js';
-export * from './plugin-aws-cn/index.js';
-export * from './plugin-dnsla/index.js';
-export * from './plugin-upyun/index.js';
-export * from './plugin-volcengine/index.js'
-export * from './plugin-jdcloud/index.js'
-export * from './plugin-51dns/index.js'
-export * from './plugin-notification/index.js'
-export * from './plugin-flex/index.js'
-export * from './plugin-farcdn/index.js'
-export * from './plugin-fnos/index.js'
-export * from './plugin-rainyun/index.js'
-export * from './plugin-cloudflare/index.js'
-export * from './plugin-github/index.js'
-export * from './plugin-namesilo/index.js'
-export * from './plugin-proxmox/index.js'
-export * from './plugin-wangsu/index.js'
-export * from './plugin-admin/index.js'
-export * from './plugin-ksyun/index.js'
-export * from './plugin-apisix/index.js'
-export * from './plugin-dokploy/index.js'
-export * from './plugin-godaddy/index.js'
-export * from './plugin-captcha/index.js'
-export * from './plugin-xinnet/index.js'
-export * from './plugin-xinnetconnet/index.js'
-export * from './plugin-oauth/index.js'
-export * from './plugin-cmcc/index.js'
-export * from './plugin-template/index.js'
-export * from './plugin-ucloud/index.js'
-export * from './plugin-goedge/index.js'
-export * from './plugin-lib/index.js'
-export * from './plugin-plus/index.js'
-export * from './plugin-cert/index.js'
-export * from './plugin-zenlayer/index.js'
+// export * from './plugin-aliyun/index.js';
+// export * from './plugin-tencent/index.js';
+// export * from './plugin-host/index.js';
+// export * from './plugin-huawei/index.js';
+// export * from './plugin-demo/index.js';
+// export * from './plugin-other/index.js';
+// export * from './plugin-west/index.js';
+// export * from './plugin-doge/index.js';
+// export * from './plugin-qiniu/index.js';
+// export * from './plugin-woai/index.js';
+// export * from './plugin-cachefly/index.js';
+// export * from './plugin-gcore/index.js';
+// export * from './plugin-qnap/index.js';
+// export * from './plugin-aws/index.js';
+// export * from './plugin-aws-cn/index.js';
+// export * from './plugin-dnsla/index.js';
+// export * from './plugin-upyun/index.js';
+// export * from './plugin-volcengine/index.js'
+// export * from './plugin-jdcloud/index.js'
+// export * from './plugin-51dns/index.js'
+// export * from './plugin-notification/index.js'
+// export * from './plugin-flex/index.js'
+// export * from './plugin-farcdn/index.js'
+// export * from './plugin-fnos/index.js'
+// export * from './plugin-rainyun/index.js'
+// export * from './plugin-cloudflare/index.js'
+// export * from './plugin-github/index.js'
+// export * from './plugin-namesilo/index.js'
+// export * from './plugin-proxmox/index.js'
+// export * from './plugin-wangsu/index.js'
+// export * from './plugin-admin/index.js'
+// export * from './plugin-ksyun/index.js'
+// export * from './plugin-apisix/index.js'
+// export * from './plugin-dokploy/index.js'
+// export * from './plugin-godaddy/index.js'
+// export * from './plugin-captcha/index.js'
+// export * from './plugin-xinnet/index.js'
+// export * from './plugin-xinnetconnet/index.js'
+// export * from './plugin-oauth/index.js'
+// export * from './plugin-cmcc/index.js'
+// export * from './plugin-template/index.js'
+// export * from './plugin-ucloud/index.js'
+// export * from './plugin-goedge/index.js'
+// export * from './plugin-lib/index.js'
+// export * from './plugin-plus/index.js'
+// export * from './plugin-cert/index.js'
+// export * from './plugin-zenlayer/index.js'

packages/ui/certd-server/src/plugins/plugin-plus/exsi/index.ts

@@ -0,0 +1 @@
+export * from "./plugin-deploy-to-exsi.js";

packages/ui/certd-server/src/plugins/plugin-plus/exsi/plugin-deploy-to-exsi.ts

@@ -0,0 +1,90 @@
+import { IsTaskPlugin, pluginGroups, RunStrategy, TaskInput } from "@certd/pipeline";
+import { CertApplyPluginNames, CertInfo } from "@certd/plugin-cert";
+import { AbstractPlusTaskPlugin, CertReader } from "@certd/plugin-lib";
+import { SshAccess } from "../../plugin-lib/ssh/ssh-access.js";
+import { SshClient } from "../../plugin-lib/ssh/ssh.js";
+@IsTaskPlugin({
+  name: "ExsiDeployCert",
+  title: "Exsi-部署证书到Exsi",
+  icon: "svg:icon-lucky",
+  group: pluginGroups.host.key,
+  default: {
+    strategy: {
+      runStrategy: RunStrategy.SkipWhenSucceed,
+    },
+  },
+  needPlus: true,
+})
+export class ExsiDeployCertPlugin extends AbstractPlusTaskPlugin {
+  //证书选择，此项必须要有
+  @TaskInput({
+    title: "域名证书",
+    helper: "请选择前置任务输出的域名证书",
+    component: {
+      name: "output-selector",
+      from: [...CertApplyPluginNames],
+    },
+    required: true,
+  })
+  cert!: CertInfo;
+
+  // @TaskInput(createCertDomainGetterInputDefine({ props: { required: false } }))
+  // certDomains!: string[];
+
+  //授权选择框
+  @TaskInput({
+    title: "主机SSH授权",
+    component: {
+      name: "access-selector",
+      type: "ssh",
+    },
+    required: true,
+  })
+  accessId!: string;
+
+
+  async onInstance() { }
+
+  async execute(): Promise<void> {
+    const sshConf = await this.getAccess<SshAccess>(this.accessId);
+    const sshClient = new SshClient(this.logger);
+
+    // /etc/vmware/ssl/rui.crt
+    // /etc/vmware/ssl/rui.key
+    const certReader = new CertReader(this.cert);
+
+    await certReader.readCertFile({
+      logger: this.logger,
+      handle: async (ctx) => {
+        const crtPath = ctx.tmpCrtPath;
+        const keyPath = ctx.tmpKeyPath;
+        sshClient.uploadFiles({
+          connectConf: sshConf,
+          transports: [
+            {
+              localPath: crtPath,
+              remotePath: "/etc/vmware/ssl/rui.crt",
+            },
+            {
+              localPath: keyPath,
+              remotePath: "/etc/vmware/ssl/rui.key",
+            },
+          ],
+          mkdirs: true,
+        });
+      },
+    });
+
+    const cmd = `/etc/init.d/hostd restart
+/etc/init.d/vpxa restart`
+
+    await sshClient.exec({
+      connectConf: sshConf,
+      script: cmd,
+    });
+
+    this.logger.info(`证书部署完成`);
+  }
+}
+
+new ExsiDeployCertPlugin();

packages/ui/certd-server/src/plugins/plugin-plus/index.ts

@@ -19,3 +19,5 @@ export * from "./kuocai/index.js";
 export * from "./unicloud/index.js";
 export * from "./maoyun/index.js";
 export * from "./xinnet/index.js";
+export * from "./exsi/index.js";
+export * from "./openwrt/index.js";

packages/ui/certd-server/src/plugins/plugin-plus/openwrt/index.ts

@@ -0,0 +1 @@
+export * from "./plugin-deploy-to-openwrt.js";

packages/ui/certd-server/src/plugins/plugin-plus/openwrt/plugin-deploy-to-openwrt.ts

@@ -0,0 +1,90 @@
+import { IsTaskPlugin, pluginGroups, RunStrategy, TaskInput } from "@certd/pipeline";
+import { CertApplyPluginNames, CertInfo } from "@certd/plugin-cert";
+import { AbstractPlusTaskPlugin, CertReader } from "@certd/plugin-lib";
+import { SshAccess } from "../../plugin-lib/ssh/ssh-access.js";
+import { SshClient } from "../../plugin-lib/ssh/ssh.js";
+@IsTaskPlugin({
+  name: "OpenwrtDeployCert",
+  title: "Openwrt-部署证书到Openwrt",
+  icon: "svg:icon-lucky",
+  group: pluginGroups.host.key,
+  default: {
+    strategy: {
+      runStrategy: RunStrategy.SkipWhenSucceed,
+    },
+  },
+  needPlus: true,
+})
+export class OpenwrtDeployCertPlugin extends AbstractPlusTaskPlugin {
+  //证书选择，此项必须要有
+  @TaskInput({
+    title: "域名证书",
+    helper: "请选择前置任务输出的域名证书",
+    component: {
+      name: "output-selector",
+      from: [...CertApplyPluginNames],
+    },
+    required: true,
+  })
+  cert!: CertInfo;
+
+  // @TaskInput(createCertDomainGetterInputDefine({ props: { required: false } }))
+  // certDomains!: string[];
+
+  //授权选择框
+  @TaskInput({
+    title: "主机SSH授权",
+    component: {
+      name: "access-selector",
+      type: "ssh",
+    },
+    required: true,
+  })
+  accessId!: string;
+
+
+  async onInstance() { }
+
+  async execute(): Promise<void> {
+    const sshConf = await this.getAccess<SshAccess>(this.accessId);
+    const sshClient = new SshClient(this.logger);
+
+    // /etc/vmware/ssl/rui.crt
+    // /etc/vmware/ssl/rui.key
+    const certReader = new CertReader(this.cert);
+
+    await certReader.readCertFile({
+      logger: this.logger,
+      handle: async (ctx) => {
+        const crtPath = ctx.tmpCrtPath;
+        const keyPath = ctx.tmpKeyPath;
+        sshClient.uploadFiles({
+          connectConf: sshConf,
+          transports: [
+            {
+              localPath: crtPath,
+              remotePath: "/etc/uhttpd.crt",
+            },
+            {
+              localPath: keyPath,
+              remotePath: "/etc/uhttpd.key",
+            },
+          ],
+          mkdirs: true,
+        });
+      },
+    });
+
+    this.logger.info(`证书上传完成，准备重启uhttpd生效`);
+    const cmd = `/etc/init.d/uhttpd restart`
+
+    await sshClient.exec({
+      connectConf: sshConf,
+      script: cmd,
+    });
+
+    this.logger.info(`证书部署完成`);
+  }
+}
+
+new OpenwrtDeployCertPlugin();