perf: 支持部署到飞牛OS

packages/ui/certd-server/src/plugins/plugin-flex/plugins/plugin-refresh-cert.ts

@@ -1,9 +1,8 @@
 import { AbstractTaskPlugin, IsTaskPlugin, pluginGroups, RunStrategy, TaskInput } from "@certd/pipeline";
-import { CertApplyPluginNames, CertInfo } from "@certd/plugin-cert";
+import { CertApplyPluginNames, CertInfo,CertReader } from "@certd/plugin-cert";
 import { createCertDomainGetterInputDefine, createRemoteSelectInputDefine } from "@certd/plugin-lib";
 import { FlexCDNAccess } from "../access.js";
 import { FlexCDNClient } from "../client.js";
-import crypto from 'crypto'
 
 @IsTaskPlugin({
   //命名规范，插件类型+功能（就是目录plugin-demo中的demo），大写字母开头，驼峰命名
@@ -62,41 +61,6 @@ export class FlexCDNRefreshCert extends AbstractTaskPlugin {
   async onInstance() {
   }
 
-  static parseCertInfo(certPem: string) {
-    const certificateArray = certPem
-      .trim()
-      .split('-----END CERTIFICATE-----')
-      .filter(cert => cert.trim() !== '')
-      .map(cert => (cert + '-----END CERTIFICATE-----').trim());
-
-    const currentInfo = new crypto.X509Certificate(certificateArray[0])
-
-    const dnsNames = currentInfo.subjectAltName.split(',')
-      .map(it => it.trim())
-      .filter(it => it.startsWith('DNS:'))
-      .map(it => it.substring(4))
-
-    const commonNames = certificateArray.map(it => {
-      const info = new crypto.X509Certificate(it)
-
-      const subjectCN = info.issuer.trim()
-        .split('\n')
-        .map(it => it.trim())
-        .find((part) => part.trim().startsWith('CN='))
-        ?.split('=')[1]
-        ?.trim();
-
-      return subjectCN
-    })
-
-    return {
-      commonNames: commonNames,
-      dnsNames: dnsNames,
-      timeBeginAt: Math.floor((new Date(currentInfo.validFrom)).getTime() / 1000),
-      timeEndAt: Math.floor((new Date(currentInfo.validTo)).getTime() / 1000),
-    }
-  }
-
   //插件执行方法
   async execute(): Promise<void> {
     const access: FlexCDNAccess = await this.getAccess<FlexCDNAccess>(this.accessId);
@@ -119,9 +83,24 @@ export class FlexCDNRefreshCert extends AbstractTaskPlugin {
 
       const sslCert = JSON.parse(this.ctx.utils.hash.base64Decode(res.sslCertJSON))
       this.logger.info(`证书信息：${sslCert.name}，${sslCert.dnsNames}`);
+      const certReader = new CertReader(this.cert)
+      /**
+       *   commonNames: commonNames,
+       *       dnsNames: dnsNames,
+       *       timeBeginAt: Math.floor((new Date(currentInfo.validFrom)).getTime() / 1000),
+       *       timeEndAt: Math.floor((new Date(currentInfo.validTo)).getTime() / 1000),
+       *
+       */
+      const commonNames =[ certReader.getMainDomain()]
+      const dnsNames = certReader.getAltNames()
+      const timeBeginAt = Math.floor(certReader.detail.notBefore.getTime()  / 1000);
+      const timeEndAt = Math.floor(certReader.detail.notAfter.getTime()  / 1000);
       const body = {
         ...sslCert, // inherit old cert info like name and description
-        ...FlexCDNRefreshCert.parseCertInfo(this.cert.crt),
+        commonNames,
+        dnsNames,
+        timeBeginAt,
+        timeEndAt,
         name: sslCert.name,
         sslCertId: item,
         certData: this.ctx.utils.hash.base64(this.cert.crt),
@@ -160,7 +139,7 @@ export class FlexCDNRefreshCert extends AbstractTaskPlugin {
 
     const options = list.map((item: any) => {
       return {
-        label: `${item.name}<${item.id}-${item.dnsNames[0]}>`,
+        label: `${item.name}<${item.id}-${item.dnsNames?.[0]}>`,
         value: item.id,
         domain: item.dnsNames
       };