v1.39.7

https://github.com/certd/certd/issues/693

.trae/skills/agent.md

@@ -0,0 +1,14 @@
+你是一名资深nodejs工程师，擅长开发Certd开源系统的任务插件。
+certd是一款全自动证书申请部署管理工具，基于流水线的方式，通过里面申请证书插件申请证书，然后将证书传递给下一个部署任务插件，不同的部署任务插件将证书部署到用户的各个应用系统当中。
+
+certd插件分成以下几种类型：
+Access：存储用户的第三放应用的授权数据，比如用户名密码，accessSecret 或 accessToken等。同时它里面的方法还负责对接第三方的api接口
+Task： 部署任务插件，它继承AbstractTaskPlugin类，被流水线调用execute方法，将证书部署到对应的应用上
+DnsProvider: DNS提供商插件，它用于在ACME申请证书时给域名添加txt解析记录。
+
+在开始工作前，请阅读并加载.trae/skills下面的技能，根据skills进行相应的插件开发
+当开发过程中遇到问题，需要参考plugins目录下的其他插件，或者用户提醒你更好的做法时，你需要总结经验，更新相应的skills，让skills越来越完善，能够在以后得新插件开发中具备指导意义。
+
+一般调用的api接口文档会比较复杂，你不知道接口是什么时，请务必询问用户，让用户提供API接口文档
+
+完成开发后无需测试，通知用户自己去测试

CHANGELOG.md

@@ -3,6 +3,17 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+### Bug Fixes
+
+* 修复cname校验报该授权无权限的bug ([b1eb706](https://github.com/certd/certd/commit/b1eb7069258d6ff2b128091911fa448eaffc5f33))
+
+### Performance Improvements
+
+* 支持部署到火山云tos自定义域名证书 ([af6deb9](https://github.com/certd/certd/commit/af6deb99cd24a69a189b1fdd1df51c8f7816dcda))
+* 支持部署证书到火山引擎vod ([f91d591](https://github.com/certd/certd/commit/f91d591b03c50166d9fa352ba11c62d963869aa5))
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 ### Bug Fixes

docs/guide/plugins/deploy.md

@@ -1,5 +1,5 @@
 # 任务插件
-共 `126` 款任务插件    
+共 `128` 款任务插件    
 ## 1. 证书申请
 
 | 序号 | 名称 | 说明 |
@@ -131,8 +131,9 @@
 | 3.| **火山引擎-部署证书至CLB** | 部署至火山引擎负载均衡 | 
 | 4.| **火山引擎-部署证书至DCDN** | 部署至火山引擎全站加速 | 
 | 5.| **火山引擎-部署证书至Live** | 部署至火山引擎视频直播 | 
-| 6.| **火山引擎-部署证书至VOD** | 部署至火山引擎视频点播(暂不可用) | 
-| 7.| **火山引擎-上传证书至证书中心** | 上传证书至火山引擎证书中心 | 
+| 6.| **火山引擎-部署证书至TOS自定义域名** | 仅限TOS自定义域名，加速域名请选择火山引擎的CDN插件 | 
+| 7.| **火山引擎-部署证书至VOD** | 部署至火山引擎视频点播 | 
+| 8.| **火山引擎-上传证书至证书中心** | 上传证书至火山引擎证书中心 | 
 ## 9. 京东云
 
 | 序号 | 名称 | 说明 |

lerna.json

@@ -9,5 +9,5 @@
     }
   },
   "npmClient": "pnpm",
-  "version": "1.39.6"
+  "version": "1.39.7"
 }

packages/core/acme-client/CHANGELOG.md

@@ -3,6 +3,10 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/publishlab/node-acme-client/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+**Note:** Version bump only for package @certd/acme-client
+
 ## [1.39.6](https://github.com/publishlab/node-acme-client/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 **Note:** Version bump only for package @certd/acme-client

packages/core/acme-client/package.json

@@ -3,7 +3,7 @@
     "description": "Simple and unopinionated ACME client",
     "private": false,
     "author": "nmorsman",
-    "version": "1.39.6",
+    "version": "1.39.7",
     "type": "module",
     "module": "scr/index.js",
     "main": "src/index.js",
@@ -18,7 +18,7 @@
         "types"
     ],
     "dependencies": {
-        "@certd/basic": "^1.39.6",
+        "@certd/basic": "^1.39.7",
         "@peculiar/x509": "^1.11.0",
         "asn1js": "^3.0.5",
         "axios": "^1.9.0",

packages/core/basic/CHANGELOG.md

@@ -3,6 +3,10 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+**Note:** Version bump only for package @certd/basic
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 **Note:** Version bump only for package @certd/basic

packages/core/basic/build.md

@@ -1 +1 @@
-00:03
+01:02

packages/core/basic/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@certd/basic",
   "private": false,
-  "version": "1.39.6",
+  "version": "1.39.7",
   "type": "module",
   "main": "./dist/index.js",
   "module": "./dist/index.js",

packages/core/pipeline/CHANGELOG.md

@@ -3,6 +3,10 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+**Note:** Version bump only for package @certd/pipeline
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 **Note:** Version bump only for package @certd/pipeline

packages/core/pipeline/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@certd/pipeline",
   "private": false,
-  "version": "1.39.6",
+  "version": "1.39.7",
   "type": "module",
   "main": "./dist/index.js",
   "module": "./dist/index.js",
@@ -18,8 +18,8 @@
     "compile": "tsc --skipLibCheck --watch"
   },
   "dependencies": {
-    "@certd/basic": "^1.39.6",
-    "@certd/plus-core": "^1.39.6",
+    "@certd/basic": "^1.39.7",
+    "@certd/plus-core": "^1.39.7",
     "dayjs": "^1.11.7",
     "lodash-es": "^4.17.21",
     "reflect-metadata": "^0.1.13"

packages/libs/lib-huawei/CHANGELOG.md

@@ -3,6 +3,10 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+**Note:** Version bump only for package @certd/lib-huawei
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 **Note:** Version bump only for package @certd/lib-huawei

packages/libs/lib-huawei/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@certd/lib-huawei",
   "private": false,
-  "version": "1.39.6",
+  "version": "1.39.7",
   "main": "./dist/bundle.js",
   "module": "./dist/bundle.js",
   "types": "./dist/d/index.d.ts",

packages/libs/lib-iframe/CHANGELOG.md

@@ -3,6 +3,10 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+**Note:** Version bump only for package @certd/lib-iframe
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 **Note:** Version bump only for package @certd/lib-iframe

packages/libs/lib-iframe/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@certd/lib-iframe",
   "private": false,
-  "version": "1.39.6",
+  "version": "1.39.7",
   "type": "module",
   "main": "./dist/index.js",
   "module": "./dist/index.js",

packages/libs/lib-jdcloud/CHANGELOG.md

@@ -3,6 +3,10 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+**Note:** Version bump only for package @certd/jdcloud
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 **Note:** Version bump only for package @certd/jdcloud

packages/libs/lib-jdcloud/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@certd/jdcloud",
-  "version": "1.39.6",
+  "version": "1.39.7",
   "description": "jdcloud openApi sdk",
   "main": "./dist/bundle.js",
   "module": "./dist/bundle.js",

packages/libs/lib-k8s/CHANGELOG.md

@@ -3,6 +3,10 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+**Note:** Version bump only for package @certd/lib-k8s
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 **Note:** Version bump only for package @certd/lib-k8s

packages/libs/lib-k8s/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@certd/lib-k8s",
   "private": false,
-  "version": "1.39.6",
+  "version": "1.39.7",
   "type": "module",
   "main": "./dist/index.js",
   "module": "./dist/index.js",
@@ -17,7 +17,7 @@
     "pub": "npm publish"
   },
   "dependencies": {
-    "@certd/basic": "^1.39.6",
+    "@certd/basic": "^1.39.7",
     "@kubernetes/client-node": "0.21.0"
   },
   "devDependencies": {

packages/libs/lib-server/CHANGELOG.md

@@ -3,6 +3,12 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+### Bug Fixes
+
+* 修复cname校验报该授权无权限的bug ([b1eb706](https://github.com/certd/certd/commit/b1eb7069258d6ff2b128091911fa448eaffc5f33))
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 **Note:** Version bump only for package @certd/lib-server

packages/libs/lib-server/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@certd/lib-server",
-  "version": "1.39.6",
+  "version": "1.39.7",
   "description": "midway with flyway, sql upgrade way ",
   "private": false,
   "type": "module",
@@ -28,11 +28,11 @@
   ],
   "license": "AGPL",
   "dependencies": {
-    "@certd/acme-client": "^1.39.6",
-    "@certd/basic": "^1.39.6",
-    "@certd/pipeline": "^1.39.6",
-    "@certd/plugin-lib": "^1.39.6",
-    "@certd/plus-core": "^1.39.6",
+    "@certd/acme-client": "^1.39.7",
+    "@certd/basic": "^1.39.7",
+    "@certd/pipeline": "^1.39.7",
+    "@certd/plugin-lib": "^1.39.7",
+    "@certd/plus-core": "^1.39.7",
     "@midwayjs/cache": "3.14.0",
     "@midwayjs/core": "3.20.11",
     "@midwayjs/i18n": "3.20.13",

packages/libs/lib-server/src/user/access/service/access-getter.ts

@@ -3,8 +3,8 @@ import { IAccessService } from '@certd/pipeline';
 export class AccessGetter implements IAccessService {
   userId: number;
   projectId?: number;
-  getter: <T>(id: any, userId?: number, projectId?: number) => Promise<T>;
-  constructor(userId: number, projectId: number, getter: (id: any, userId: number, projectId?: number) => Promise<any>) {
+  getter: <T>(id: any, userId?: number, projectId?: number, ignorePermission?: boolean) => Promise<T>;
+  constructor(userId: number, projectId: number, getter: (id: any, userId: number, projectId?: number, ignorePermission?: boolean) => Promise<any>) {
     this.userId = userId;
     this.projectId = projectId;
     this.getter = getter;

packages/libs/midway-flyway-js/CHANGELOG.md

@@ -3,6 +3,10 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+**Note:** Version bump only for package @certd/midway-flyway-js
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 **Note:** Version bump only for package @certd/midway-flyway-js

packages/libs/midway-flyway-js/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@certd/midway-flyway-js",
-  "version": "1.39.6",
+  "version": "1.39.7",
   "description": "midway with flyway, sql upgrade way ",
   "private": false,
   "type": "module",

packages/plugins/plugin-cert/CHANGELOG.md

@@ -3,6 +3,10 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+**Note:** Version bump only for package @certd/plugin-cert
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 **Note:** Version bump only for package @certd/plugin-cert

packages/plugins/plugin-cert/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@certd/plugin-cert",
   "private": false,
-  "version": "1.39.6",
+  "version": "1.39.7",
   "type": "module",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",
@@ -17,10 +17,10 @@
     "compile": "tsc --skipLibCheck --watch"
   },
   "dependencies": {
-    "@certd/acme-client": "^1.39.6",
-    "@certd/basic": "^1.39.6",
-    "@certd/pipeline": "^1.39.6",
-    "@certd/plugin-lib": "^1.39.6",
+    "@certd/acme-client": "^1.39.7",
+    "@certd/basic": "^1.39.7",
+    "@certd/pipeline": "^1.39.7",
+    "@certd/plugin-lib": "^1.39.7",
     "psl": "^1.9.0",
     "punycode.js": "^2.3.1"
   },

packages/plugins/plugin-lib/CHANGELOG.md

@@ -3,6 +3,10 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+**Note:** Version bump only for package @certd/plugin-lib
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 **Note:** Version bump only for package @certd/plugin-lib

packages/plugins/plugin-lib/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@certd/plugin-lib",
   "private": false,
-  "version": "1.39.6",
+  "version": "1.39.7",
   "type": "module",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",
@@ -22,10 +22,10 @@
     "@alicloud/pop-core": "^1.7.10",
     "@alicloud/tea-util": "^1.4.11",
     "@aws-sdk/client-s3": "^3.964.0",
-    "@certd/acme-client": "^1.39.6",
-    "@certd/basic": "^1.39.6",
-    "@certd/pipeline": "^1.39.6",
-    "@certd/plus-core": "^1.39.6",
+    "@certd/acme-client": "^1.39.7",
+    "@certd/basic": "^1.39.7",
+    "@certd/pipeline": "^1.39.7",
+    "@certd/plus-core": "^1.39.7",
     "@kubernetes/client-node": "0.21.0",
     "ali-oss": "^6.22.0",
     "basic-ftp": "^5.0.5",

packages/ui/certd-client/CHANGELOG.md

@@ -3,6 +3,10 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+**Note:** Version bump only for package @certd/ui-client
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 ### Bug Fixes

packages/ui/certd-client/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@certd/ui-client",
-  "version": "1.39.6",
+  "version": "1.39.7",
   "private": true,
   "scripts": {
     "dev": "vite --open",
@@ -106,8 +106,8 @@
     "zod-defaults": "^0.1.3"
   },
   "devDependencies": {
-    "@certd/lib-iframe": "^1.39.6",
-    "@certd/pipeline": "^1.39.6",
+    "@certd/lib-iframe": "^1.39.7",
+    "@certd/pipeline": "^1.39.7",
     "@rollup/plugin-commonjs": "^25.0.7",
     "@rollup/plugin-node-resolve": "^15.2.3",
     "@types/chai": "^4.3.12",

packages/ui/certd-server/CHANGELOG.md

@@ -3,6 +3,17 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+## [1.39.7](https://github.com/certd/certd/compare/v1.39.6...v1.39.7) (2026-03-25)
+
+### Bug Fixes
+
+* 修复cname校验报该授权无权限的bug ([b1eb706](https://github.com/certd/certd/commit/b1eb7069258d6ff2b128091911fa448eaffc5f33))
+
+### Performance Improvements
+
+* 支持部署到火山云tos自定义域名证书 ([af6deb9](https://github.com/certd/certd/commit/af6deb99cd24a69a189b1fdd1df51c8f7816dcda))
+* 支持部署证书到火山引擎vod ([f91d591](https://github.com/certd/certd/commit/f91d591b03c50166d9fa352ba11c62d963869aa5))
+
 ## [1.39.6](https://github.com/certd/certd/compare/v1.39.5...v1.39.6) (2026-03-22)
 
 ### Bug Fixes

packages/ui/certd-server/metadata/deploy_VolcengineDeployToTOS.yaml

@@ -0,0 +1,116 @@
+showRunStrategy: false
+default:
+  strategy:
+    runStrategy: 1
+name: VolcengineDeployToTOS
+title: 火山引擎-部署证书至TOS自定义域名
+icon: svg:icon-volcengine
+group: volcengine
+desc: 仅限TOS自定义域名，加速域名请选择火山引擎的CDN插件
+input:
+  cert:
+    title: 域名证书
+    helper: 请选择前置任务输出的域名证书
+    component:
+      name: output-selector
+      from:
+        - ':cert:'
+        - VolcengineUploadToCertCenter
+    required: true
+    order: 0
+  certDomains:
+    title: 当前证书域名
+    component:
+      name: cert-domains-getter
+    mergeScript: |2-
+
+              return {
+                component:{
+                    inputKey: ctx.compute(({form})=>{
+                      return form.cert
+                    }),
+                }
+              }
+              
+    template: false
+    required: false
+    order: 0
+  accessId:
+    title: Access授权
+    helper: 火山引擎AccessKeyId、AccessKeySecret
+    component:
+      name: access-selector
+      type: volcengine
+    required: true
+    order: 0
+  region:
+    title: 地域
+    helper: TOS服务所在地域
+    component:
+      name: a-select
+      options:
+        - label: 华北2（北京）
+          value: cn-beijing
+        - label: 华东2（上海）
+          value: cn-shanghai
+        - label: 华南1（广州）
+          value: cn-guangzhou
+        - label: 中国香港
+          value: cn-hongkong
+        - label: 亚太东南（柔佛）
+          value: ap-southeast-1
+        - label: 亚太东南（雅加达）
+          value: ap-southeast-3
+    value: cn-beijing
+    required: true
+    order: 0
+  bucket:
+    title: Bucket
+    helper: 存储桶名称
+    component:
+      name: remote-auto-complete
+      vModel: value
+      type: plugin
+      action: onGetBucketList
+      search: false
+      pager: false
+      watches:
+        - accessId
+        - region
+    required: true
+    order: 0
+  domainName:
+    title: TOS自定义域名
+    component:
+      name: remote-select
+      vModel: value
+      mode: tags
+      type: plugin
+      action: onGetDomainList
+      search: false
+      pager: false
+      multi: true
+      watches:
+        - certDomains
+        - accessId
+        - certDomains
+        - accessId
+        - region
+        - bucket
+    required: true
+    mergeScript: |2-
+
+                return {
+                  component:{
+                    form: ctx.compute(({form})=>{
+                      return form
+                    })
+                  },
+               }
+              
+    helper: 你在火山引擎上配置的TOS自定义域名，比如:example.com
+    order: 0
+output: {}
+pluginType: deploy
+type: builtIn
+scriptFilePath: /plugins/plugin-volcengine/plugins/plugin-deploy-to-tos.js

packages/ui/certd-server/metadata/deploy_VolcengineDeployToVOD.yaml

@@ -6,8 +6,7 @@ name: VolcengineDeployToVOD
 title: 火山引擎-部署证书至VOD
 icon: svg:icon-volcengine
 group: volcengine
-desc: 部署至火山引擎视频点播(暂不可用)
-deprecated: 暂时缺少部署ssl接口
+desc: 部署至火山引擎视频点播
 input:
   cert:
     title: 域名证书
@@ -44,12 +43,64 @@ input:
       type: volcengine
     required: true
     order: 0
+  regionId:
+    title: 区域
+    helper: 选择火山引擎区域
+    component:
+      name: select
+      options:
+        - value: cn-north-1
+          label: 华北1（北京）
+        - value: ap-southeast-1
+          label: 东南亚1（新加坡）
+    default: cn-north-1
+    required: true
+    order: 0
   spaceName:
     title: 空间名称
+    component:
+      name: remote-select
+      vModel: value
+      mode: default
+      type: plugin
+      action: onGetSpaceList
+      search: false
+      pager: false
+      multi: false
+      watches:
+        - certDomains
+        - accessId
+        - accessId
+        - regionId
+    required: true
+    mergeScript: |2-
+
+                return {
+                  component:{
+                    form: ctx.compute(({form})=>{
+                      return form
+                    })
+                  },
+               }
+              
+    helper: 选择要部署证书的点播空间
+    order: 0
+  domainType:
+    title: 域名类型
+    helper: 选择域名类型
+    component:
+      name: a-select
+      vModel: value
+      options:
+        - value: play
+          label: 点播加速域名
+        - value: image
+          label: 封面加速域名
+    value: play
     required: true
     order: 0
   domainList:
-    title: 点播域名
+    title: 域名
     component:
       name: remote-select
       vModel: value
@@ -65,6 +116,7 @@ input:
         - certDomains
         - accessId
         - spaceName
+        - domainType
     required: true
     mergeScript: |2-
 
@@ -77,7 +129,7 @@ input:
                }
               
     helper: |-
-      选择要部署证书的点播域名
+      选择要部署证书的域名
       需要先在域名管理页面进行证书中心访问授权（即点击去配置SSL证书）
     order: 0
 output: {}

packages/ui/certd-server/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@certd/ui-server",
-  "version": "1.39.6",
+  "version": "1.39.7",
   "description": "fast-server base midway",
   "private": true,
   "type": "module",
@@ -50,20 +50,20 @@
     "@aws-sdk/client-route-53": "^3.964.0",
     "@aws-sdk/client-s3": "^3.964.0",
     "@aws-sdk/client-sts": "^3.990.0",
-    "@certd/acme-client": "^1.39.6",
-    "@certd/basic": "^1.39.6",
-    "@certd/commercial-core": "^1.39.6",
+    "@certd/acme-client": "^1.39.7",
+    "@certd/basic": "^1.39.7",
+    "@certd/commercial-core": "^1.39.7",
     "@certd/cv4pve-api-javascript": "^8.4.2",
-    "@certd/jdcloud": "^1.39.6",
-    "@certd/lib-huawei": "^1.39.6",
-    "@certd/lib-k8s": "^1.39.6",
-    "@certd/lib-server": "^1.39.6",
-    "@certd/midway-flyway-js": "^1.39.6",
-    "@certd/pipeline": "^1.39.6",
-    "@certd/plugin-cert": "^1.39.6",
-    "@certd/plugin-lib": "^1.39.6",
-    "@certd/plugin-plus": "^1.39.6",
-    "@certd/plus-core": "^1.39.6",
+    "@certd/jdcloud": "^1.39.7",
+    "@certd/lib-huawei": "^1.39.7",
+    "@certd/lib-k8s": "^1.39.7",
+    "@certd/lib-server": "^1.39.7",
+    "@certd/midway-flyway-js": "^1.39.7",
+    "@certd/pipeline": "^1.39.7",
+    "@certd/plugin-cert": "^1.39.7",
+    "@certd/plugin-lib": "^1.39.7",
+    "@certd/plugin-plus": "^1.39.7",
+    "@certd/plus-core": "^1.39.7",
     "@google-cloud/publicca": "^1.3.0",
     "@huaweicloud/huaweicloud-sdk-cdn": "^3.1.185",
     "@huaweicloud/huaweicloud-sdk-core": "^3.1.185",
@@ -87,6 +87,7 @@
     "@simplewebauthn/server": "^13.2.3",
     "@ucloud-sdks/ucloud-sdk-js": "^0.2.4",
     "@volcengine/openapi": "^1.28.1",
+    "@volcengine/tos-sdk": "^2.9.1",
     "ali-oss": "^6.21.0",
     "alipay-sdk": "^4.13.0",
     "axios": "^1.9.0",

packages/ui/certd-server/src/configuration.ts

@@ -20,7 +20,7 @@ import * as commercial from '@certd/commercial-core';
 import * as upload from '@midwayjs/upload';
 import { setLogger } from '@certd/acme-client';
 import {HiddenMiddleware} from "./middleware/hidden.js";
-import * as swagger from '@midwayjs/swagger';
+// import * as swagger from '@midwayjs/swagger';
 //@ts-ignore
 // process.env.UV_THREADPOOL_SIZE = 2
 process.on('uncaughtException', error => {
@@ -62,10 +62,10 @@ process.on('uncaughtException', error => {
     upload,
     libServer,
     commercial,
-    {
-      component: swagger,
-      enabledEnvironment: ['local']
-    },
+    // {
+    //   component: swagger,
+    //   enabledEnvironment: ['local']
+    // },
     {
       component: info,
       enabledEnvironment: ['local'],

packages/ui/certd-server/src/modules/cname/service/cname-record-service.ts

@@ -8,7 +8,7 @@ import {
   SysSettingsService,
   ValidateException
 } from "@certd/lib-server";
-import { CnameProvider, CnameRecord, IAccessService } from "@certd/pipeline";
+import { CnameProvider, CnameRecord } from "@certd/pipeline";
 import { createDnsProvider, DomainParser, IDnsProvider } from "@certd/plugin-cert";
 import { Inject, Provide, Scope, ScopeEnum } from "@midwayjs/core";
 import { InjectEntityModel } from "@midwayjs/typeorm";
@@ -252,7 +252,6 @@ export class CnameRecordService extends BaseService<CnameRecordEntity> {
     }
 
     await this.getByDomain(bean.domain, bean.userId,bean.projectId);
-
     const taskService = this.taskServiceBuilder.create({ userId: bean.userId, projectId: bean.projectId });
     const subDomainGetter = await taskService.getSubDomainsGetter();
     const domainParser = new DomainParser(subDomainGetter);
@@ -290,10 +289,10 @@ export class CnameRecordService extends BaseService<CnameRecordEntity> {
         });
       }
 
-      const serviceGetter = this.taskServiceBuilder.create({ userId: bean.userId, projectId: bean.projectId });
-      const accessGetter:IAccessService = await serviceGetter.get("accessService");
-      const access = await accessGetter.getById(cnameProvider.accessId);
-      const context = { access, logger, http, utils, domainParser, serviceGetter };
+      const record = await this.getWithAccessByDomain(bean.domain, bean.userId,bean.projectId);
+
+      const access = record.cnameProvider.access
+      const context = { access, logger, http, utils, domainParser, serviceGetter:taskService };
       const dnsProvider: IDnsProvider = await createDnsProvider({
         dnsProviderType: cnameProvider.dnsProviderType,
         context

packages/ui/certd-server/src/plugins/plugin-volcengine/plugins/index.ts

@@ -5,3 +5,4 @@ export * from './plugin-deploy-to-alb.js'
 export * from './plugin-deploy-to-live.js'
 export * from './plugin-deploy-to-dcdn.js'
 export * from './plugin-deploy-to-vod.js'
+export * from './plugin-deploy-to-tos.js'

packages/ui/certd-server/src/plugins/plugin-volcengine/plugins/plugin-deploy-to-cdn.ts

@@ -100,7 +100,8 @@ export class VolcengineDeployToCDN extends AbstractTaskPlugin {
       await service.UpdateCdnConfig({
         Domain: domain,
         HTTPS: {
-          CertInfo: { CertId: certId },
+          CertInfo: { CertId: certId as string },
+          Switch: true,
         }
       })
       this.logger.info(`部署域名${domain}证书成功`);

packages/ui/certd-server/src/plugins/plugin-volcengine/plugins/plugin-deploy-to-tos.ts

@@ -0,0 +1,199 @@
+import { AbstractTaskPlugin, IsTaskPlugin, pluginGroups, RunStrategy, TaskInput } from "@certd/pipeline";
+import { createCertDomainGetterInputDefine, createRemoteSelectInputDefine } from "@certd/plugin-lib";
+import { CertApplyPluginNames, CertInfo } from "@certd/plugin-cert";
+import { optionsUtils } from "@certd/basic";
+import { VolcengineAccess } from "../access.js";
+import { VolcengineClient } from "../ve-client.js";
+
+@IsTaskPlugin({
+  name: 'VolcengineDeployToTOS',
+  title: '火山引擎-部署证书至TOS自定义域名',
+  icon: 'svg:icon-volcengine',
+  group: pluginGroups.volcengine.key,
+  desc: '仅限TOS自定义域名，加速域名请选择火山引擎的CDN插件',
+  default: {
+    strategy: {
+      runStrategy: RunStrategy.SkipWhenSucceed,
+    },
+  },
+})
+export class VolcengineDeployToTOS extends AbstractTaskPlugin {
+  @TaskInput({
+    title: '域名证书',
+    helper: '请选择前置任务输出的域名证书',
+    component: {
+      name: 'output-selector',
+      from: [...CertApplyPluginNames, 'VolcengineUploadToCertCenter'],
+    },
+    required: true,
+  })
+  cert!: CertInfo | string;
+
+  @TaskInput(createCertDomainGetterInputDefine({ props: { required: false } }))
+  certDomains!: string[];
+
+
+  @TaskInput({
+    title: 'Access授权',
+    helper: '火山引擎AccessKeyId、AccessKeySecret',
+    component: {
+      name: 'access-selector',
+      type: 'volcengine',
+    },
+    required: true,
+  })
+  accessId!: string;
+
+  @TaskInput({
+    title: '地域',
+    helper: 'TOS服务所在地域',
+    component: {
+      name: 'a-select',
+      options:[
+        { label: "华北2（北京）", value: "cn-beijing" },
+        { label: "华东2（上海）", value: "cn-shanghai" },
+        { label: "华南1（广州）", value: "cn-guangzhou" },
+        { label: "中国香港", value: "cn-hongkong" },
+        { label: "亚太东南（柔佛）", value: "ap-southeast-1" },
+        { label: "亚太东南（雅加达）", value: "ap-southeast-3" },
+      ]
+    },
+    value: 'cn-beijing',
+    required: true,
+  })
+  region:string = "cn-beijing"
+
+  @TaskInput({
+    title: 'Bucket',
+    helper: '存储桶名称',
+    component: {
+      name: 'remote-auto-complete',
+      vModel: 'value',
+      type: 'plugin',
+      action: 'onGetBucketList',
+      search: false,
+      pager: false,
+      watches: ['accessId', 'region']
+    },
+    required: true,
+  })
+  bucket!: string;
+
+  @TaskInput(
+    createRemoteSelectInputDefine({
+      title: 'TOS自定义域名',
+      helper: '你在火山引擎上配置的TOS自定义域名，比如:example.com',
+      action: VolcengineDeployToTOS.prototype.onGetDomainList.name,
+      watches: ['certDomains', 'accessId', 'region', 'bucket'],
+      required: true,
+    })
+  )
+  domainName!: string | string[];
+
+
+  async onInstance() {}
+  async execute(): Promise<void> {
+    this.logger.info('开始部署证书到火山引擎TOS自定义域名');
+    const access = await this.getAccess<VolcengineAccess>(this.accessId);
+
+    this.logger.info(`bucket: ${this.bucket}, region: ${this.region}, domainName: ${this.domainName}`);
+    
+    const client = new VolcengineClient({
+      logger: this.logger,
+      access,
+      http: this.http
+    });
+    
+    const tosService = await client.getTOSService({ region: this.region });
+    
+    if (!this.cert) {
+      throw new Error('你还未选择证书');
+    }
+    let certId = this.cert
+    if (typeof certId !== 'string') {
+      const certInfo = this.cert as CertInfo
+      this.logger.info(`开始上传证书`)
+      const certService = await client.getCertCenterService();
+      certId = await certService.ImportCertificate({
+        certName: this.appendTimeSuffix('certd'),
+        cert: certInfo
+      })
+      this.logger.info(`上传证书成功：${certId}`);
+    }else{
+      this.logger.info(`使用已有证书ID：${certId}`);
+    }
+
+    for (const domain of this.domainName) {
+      this.logger.info(`开始部署域名${domain}证书`)
+      await tosService.putBucketCustomDomain({
+        bucket: this.bucket,
+        customDomainRule: {
+          Domain: domain,
+          CertId: certId as string
+        }
+      })
+      this.logger.info(`部署域名${domain}证书成功`);
+      await this.ctx.utils.sleep(1000)
+    }
+
+    this.logger.info('部署完成');
+  }
+
+  async onGetDomainList(data: any) {
+    if (!this.accessId || !this.bucket) {
+      throw new Error('请选择Access授权和Bucket');
+    }
+    const access = await this.getAccess<VolcengineAccess>(this.accessId);
+
+    const client = new VolcengineClient({
+      logger: this.logger,
+      access,
+      http: this.http
+    });
+    
+    const tosService = await client.getTOSService({ region: this.region });
+    
+    const res = await tosService.getBucketCustomDomain({
+      bucket: this.bucket
+    });
+    
+    const list = res?.data?.CustomDomainRules || [];
+    if (!list || list.length === 0) {
+      throw new Error('找不到TOS自定义域名，您可以手动输入');
+    }
+    
+    const options = list.map((item: any) => {
+      return {
+        value: item.Domain,
+        label: item.Domain,
+        domain: item.Domain,
+      };
+    });
+    
+    return optionsUtils.buildGroupOptions(options, this.certDomains);
+  }
+
+  async onGetBucketList(data: any) {
+    if (!this.accessId) {
+      throw new Error('请选择Access授权');
+    }
+    const access = await this.getAccess<VolcengineAccess>(this.accessId);
+
+    const client = new VolcengineClient({
+      logger: this.logger,
+      access,
+      http: this.http
+    });
+    
+    const tosService = await client.getTOSService({ region: this.region });
+    
+    const res = await tosService.listBuckets();
+    
+    const buckets = res?.data?.Buckets || [];
+    return buckets.map((bucket: any) => ({
+      label: `${bucket.Name}<${bucket.Location}>`,
+      value: bucket.Name
+    }));
+  }
+}
+new VolcengineDeployToTOS();

packages/ui/certd-server/src/plugins/plugin-volcengine/plugins/plugin-deploy-to-vod.ts

@@ -9,8 +9,7 @@ import { VolcengineClient } from "../ve-client.js";
   title: "火山引擎-部署证书至VOD",
   icon: "svg:icon-volcengine",
   group: pluginGroups.volcengine.key,
-  desc: "部署至火山引擎视频点播(暂不可用)",
-  deprecated:"暂时缺少部署ssl接口",
+  desc: "部署至火山引擎视频点播",
   default: {
     strategy: {
       runStrategy: RunStrategy.SkipWhenSucceed
@@ -45,27 +44,55 @@ export class VolcengineDeployToVOD extends AbstractTaskPlugin {
   accessId!: string;
 
 
-  @TaskInput(
-    // createRemoteSelectInputDefine({
-    //   title: "空间名称",
-    //   helper: "选择要部署证书的监听器\n需要在监听器中选择证书中心，进行跨服务访问授权",
-    //   action: VolcengineDeployToVOD.prototype.onGetSpaceList.name,
-    //   watches: ["certDomains", "accessId", "regionId"],
-    //   required: true
-    // })
-    {
-      title: "空间名称",
-      required: true
-    }
-  )
-  spaceName!: string;
+  @TaskInput({
+    title: "区域",
+    helper: "选择火山引擎区域",
+    component: {
+      name: "select",
+      options: [
+        { value: "cn-north-1", label: "华北1（北京）" },
+        { value: "ap-southeast-1", label: "东南亚1（新加坡）" }
+      ]
+    },
+    default: "cn-north-1",
+    required: true
+  })
+  regionId!: string;
 
   @TaskInput(
     createRemoteSelectInputDefine({
-      title: "点播域名",
-      helper: "选择要部署证书的点播域名\n需要先在域名管理页面进行证书中心访问授权（即点击去配置SSL证书）",
+      title: "空间名称",
+      helper: "选择要部署证书的点播空间",
+      action: VolcengineDeployToVOD.prototype.onGetSpaceList.name,
+      watches: ["accessId", "regionId"],
+      multi:false,
+      required: true
+    })
+  )
+  spaceName!: string;
+
+  @TaskInput({
+    title: "域名类型",
+    helper: "选择域名类型",
+    component: {
+      name: "a-select",
+      vModel: "value",
+      options: [
+        { value: "play", label: "点播加速域名" },
+        { value: "image", label: "封面加速域名" }
+      ]
+    },
+    value: "play",
+    required: true
+  })
+  domainType!: string;
+
+  @TaskInput(
+    createRemoteSelectInputDefine({
+      title: "域名",
+      helper: "选择要部署证书的域名\n需要先在域名管理页面进行证书中心访问授权（即点击去配置SSL证书）",
       action: VolcengineDeployToVOD.prototype.onGetDomainList.name,
-      watches: ["certDomains", "accessId", "spaceName"],
+      watches: ["certDomains", "accessId", "spaceName", "domainType"],
       required: true
     })
   )
@@ -77,21 +104,36 @@ export class VolcengineDeployToVOD extends AbstractTaskPlugin {
 
   async execute(): Promise<void> {
     this.logger.info("开始部署证书到火山引擎VOD");
+    
+    if (!this.spaceName) {
+      throw new Error("SpaceName不能为空");
+    }
+    
     const access = await this.getAccess<VolcengineAccess>(this.accessId);
     let certId = await this.uploadOrGetCertId(access);
 
-    const service = await this.getVodService();
-    for (const item of this.domainList) {
-      this.logger.info(`开始部署点播域名${item}证书`);
+    const service = await this.getVodService({ version: "2023-07-01", region: this.regionId });
+    const domains = Array.isArray(this.domainList) ? this.domainList : [this.domainList];
+    for (const domain of domains) {
+      this.logger.info(`开始部署域名${domain}证书`);
       await service.request({
-        action: "ModifyListenerAttributes",
-        query: {
-          ListenerId: item,
-          CertificateSource: "cert_center",
-          CertCenterCertificateId: certId
+        action: "UpdateDomainConfig",
+        method: "POST",
+        body: {
+          SpaceName: this.spaceName,
+          DomainType: this.domainType,
+          Domain: domain,
+          Config: {
+            HTTPS: {
+              Switch: true,
+              CertInfo: {
+                CertId: certId
+              }
+            }
+          }
         }
       });
-      this.logger.info(`部署点播域名${item}证书成功`);
+      this.logger.info(`部署域名${domain}证书成功`);
     }
 
     this.logger.info("部署完成");
@@ -126,7 +168,7 @@ export class VolcengineDeployToVOD extends AbstractTaskPlugin {
   }
 
 
-  private async getVodService(req?: { version?: string }) {
+  private async getVodService(req?: { version?: string, region?: string }) {
     const access = await this.getAccess<VolcengineAccess>(this.accessId);
 
     const client = new VolcengineClient({
@@ -138,58 +180,61 @@ export class VolcengineDeployToVOD extends AbstractTaskPlugin {
     return await client.getVodService(req);
   }
 
-  // async onGetSpaceList(data: any) {
-  //   if (!this.accessId) {
-  //     throw new Error("请选择Access授权");
-  //   }
-  //   const service = await this.getVodService();
-  //
-  //   const res = await service.request({
-  //     action: "ListSpace",
-  //     method: "GET",
-  //     query: {
-  //       PageSize: 100,
-  //     },
-  //   });
-  //
-  //   const list = res.Result;
-  //   if (!list || list.length === 0) {
-  //     throw new Error("找不到空间，您可以手动填写");
-  //   }
-  //   return list.map((item: any) => {
-  //     return {
-  //       value: item.SpaceName,
-  //       label: `${item.SpaceName}`
-  //     };
-  //   });
-  // }
+  async onGetSpaceList(data: any) {
+    if (!this.accessId) {
+      throw new Error("请选择Access授权");
+    }
+    const service = await this.getVodService({ version: "2021-01-01", region: this.regionId });
+
+    const res = await service.request({
+      action: "ListSpace",
+      body: {}
+    });
+
+    const list = res.Result;
+    if (!list || list.length === 0) {
+      throw new Error("找不到空间，您可以手动填写");
+    }
+    return list.map((item: any) => {
+      return {
+        value: item.SpaceName,
+        label: `${item.SpaceName} (${item.Region})`
+      };
+    });
+  }
 
   async onGetDomainList(data: any) {
     if (!this.accessId) {
       throw new Error("请选择Access授权");
     }
-    const service = await this.getVodService();
+    if (!this.spaceName) {
+      throw new Error("请先选择空间名称");
+    }
+    const service = await this.getVodService({ version: "2023-01-01", region: this.regionId });
 
     const res = await service.request({
       action: "ListDomain",
-      body: {
+      query: {
         SpaceName: this.spaceName,
-        // Offset: 100
+        DomainType: this.domainType
       }
     });
 
     const instances = res.Result?.PlayInstanceInfo?.ByteInstances;
     if (!instances || instances.length === 0) {
-      throw new Error("找不到点播域名，您也可以手动输入点播域名");
+      throw new Error("找不到域名，您也可以手动输入域名");
     }
-    const list = []
+    const list = [];
     for (const item of instances) {
-      for (const domain of item.Domains) {
-        list.push({
-          value: item.Domain,
-          label: item.Domain,
-          domain: domain.Domain
-        });
+      if (item.Domains && item.Domains.length > 0) {
+        for (const domain of item.Domains) {
+          if (domain.Domain) {
+            list.push({
+              value: domain.Domain,
+              label: domain.Domain
+            });
+          }
+        }
       }
     }
     return this.ctx.utils.options.buildGroupOptions(list, this.certDomains);

packages/ui/certd-server/src/plugins/plugin-volcengine/ve-client.ts

@@ -84,7 +84,7 @@ export class VolcengineClient {
     return service;
   }
 
-  async getVodService(opts?: { version?: string }) {
+  async getVodService(opts?: { version?: string, region?: string }) {
     const CommonService = await this.getServiceCls();
 
     const service = new CommonService({
@@ -93,6 +93,7 @@ export class VolcengineClient {
     });
     service.setAccessKeyId(this.opts.access.accessKeyId);
     service.setSecretKey(this.opts.access.secretAccessKey);
+    service.setRegion(opts?.region || "cn-north-1");
 
     return service;
   }
@@ -124,6 +125,19 @@ export class VolcengineClient {
     return service;
   }
 
+  async getTOSService(opts: { region?: string }) {
+    const { TosClient } = await import("@volcengine/tos-sdk");
+    
+    const client = new TosClient({
+      accessKeyId: this.opts.access.accessKeyId,
+      accessKeySecret: this.opts.access.secretAccessKey,
+      region: opts.region,
+      endpoint: `tos-${opts.region}.volces.com`
+    });
+    
+    return client;
+  }
+
   async getStsService() {
     const CommonService = await this.getServiceCls();
 

pnpm-lock.yaml

@@ -49,7 +49,7 @@ importers:
   packages/core/acme-client:
     dependencies:
       '@certd/basic':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../basic
       '@peculiar/x509':
         specifier: ^1.11.0
@@ -213,10 +213,10 @@ importers:
   packages/core/pipeline:
     dependencies:
       '@certd/basic':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../basic
       '@certd/plus-core':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../pro/plus-core
       dayjs:
         specifier: ^1.11.7
@@ -412,7 +412,7 @@ importers:
   packages/libs/lib-k8s:
     dependencies:
       '@certd/basic':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/basic
       '@kubernetes/client-node':
         specifier: 0.21.0
@@ -452,19 +452,19 @@ importers:
   packages/libs/lib-server:
     dependencies:
       '@certd/acme-client':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/acme-client
       '@certd/basic':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/basic
       '@certd/pipeline':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/pipeline
       '@certd/plugin-lib':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../plugins/plugin-lib
       '@certd/plus-core':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../pro/plus-core
       '@midwayjs/cache':
         specifier: 3.14.0
@@ -610,16 +610,16 @@ importers:
   packages/plugins/plugin-cert:
     dependencies:
       '@certd/acme-client':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/acme-client
       '@certd/basic':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/basic
       '@certd/pipeline':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/pipeline
       '@certd/plugin-lib':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../plugin-lib
       psl:
         specifier: ^1.9.0
@@ -683,16 +683,16 @@ importers:
         specifier: ^3.964.0
         version: 3.964.0(aws-crt@1.26.2)
       '@certd/acme-client':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/acme-client
       '@certd/basic':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/basic
       '@certd/pipeline':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/pipeline
       '@certd/plus-core':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../pro/plus-core
       '@kubernetes/client-node':
         specifier: 0.21.0
@@ -783,16 +783,16 @@ importers:
   packages/pro/commercial-core:
     dependencies:
       '@certd/basic':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/basic
       '@certd/lib-server':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../libs/lib-server
       '@certd/pipeline':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/pipeline
       '@certd/plus-core':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../plus-core
       '@midwayjs/core':
         specifier: 3.20.11
@@ -868,16 +868,16 @@ importers:
   packages/pro/plugin-plus:
     dependencies:
       '@certd/basic':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/basic
       '@certd/pipeline':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/pipeline
       '@certd/plugin-lib':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../plugins/plugin-lib
       '@certd/plus-core':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../plus-core
       crypto-js:
         specifier: ^4.2.0
@@ -953,7 +953,7 @@ importers:
   packages/pro/plus-core:
     dependencies:
       '@certd/basic':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/basic
       dayjs:
         specifier: ^1.11.7
@@ -1249,10 +1249,10 @@ importers:
         version: 0.1.3(zod@3.24.4)
     devDependencies:
       '@certd/lib-iframe':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../libs/lib-iframe
       '@certd/pipeline':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/pipeline
       '@rollup/plugin-commonjs':
         specifier: ^25.0.7
@@ -1447,46 +1447,46 @@ importers:
         specifier: ^3.990.0
         version: 3.990.0(aws-crt@1.26.2)
       '@certd/acme-client':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/acme-client
       '@certd/basic':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/basic
       '@certd/commercial-core':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../pro/commercial-core
       '@certd/cv4pve-api-javascript':
         specifier: ^8.4.2
         version: 8.4.2
       '@certd/jdcloud':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../libs/lib-jdcloud
       '@certd/lib-huawei':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../libs/lib-huawei
       '@certd/lib-k8s':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../libs/lib-k8s
       '@certd/lib-server':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../libs/lib-server
       '@certd/midway-flyway-js':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../libs/midway-flyway-js
       '@certd/pipeline':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../core/pipeline
       '@certd/plugin-cert':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../plugins/plugin-cert
       '@certd/plugin-lib':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../plugins/plugin-lib
       '@certd/plugin-plus':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../pro/plugin-plus
       '@certd/plus-core':
-        specifier: ^1.39.2
+        specifier: ^1.39.6
         version: link:../../pro/plus-core
       '@google-cloud/publicca':
         specifier: ^1.3.0
@@ -1557,6 +1557,9 @@ importers:
       '@volcengine/openapi':
         specifier: ^1.28.1
         version: 1.30.1(buffer@6.0.3)
+      '@volcengine/tos-sdk':
+        specifier: ^2.9.1
+        version: 2.9.1
       ali-oss:
         specifier: ^6.21.0
         version: 6.23.0
@@ -4874,6 +4877,9 @@ packages:
   '@types/http-errors@2.0.4':
     resolution: {integrity: sha512-D0CFMMtydbJAegzOyHjtiKPLlvnm3iTZyZRSZoLq2mRhDdmLfIWOCYPfQJ4cu2erKghU++QvjcUjp/5h7hESpA==}
 
+  '@types/http-proxy@1.17.17':
+    resolution: {integrity: sha512-ED6LB+Z1AVylNTu7hdzuBqOgMnvG/ld6wGCG8wFnAzKX5uyW2K3WD52v0gnLCTK/VLpXtKckgWuyScYK6cSPaw==}
+
   '@types/istanbul-lib-coverage@2.0.6':
     resolution: {integrity: sha512-2QF/t/auWm0lsy8XtKVPG19v3sSOQlJe/YHZgfjb/KBBHOGSV+J2q/S671rcq9uTBrLAXmZpqJiaQbMT+zNU1w==}
 
@@ -5271,6 +5277,10 @@ packages:
     resolution: {integrity: sha512-W8R6+7UIhx06s2kpsJ0KF80IKAiIad71HUKssonMChyI37h5oFnPf6zONcX2ikXc5M8xdOiKFRxoCO8ChEob0g==}
     engines: {node: '>=12'}
 
+  '@volcengine/tos-sdk@2.9.1':
+    resolution: {integrity: sha512-hmrBzl7/LpJYezGWytPg6CZk5lvFgmDKUVZJLM3vwZgp3UKSZwgxFA7V0QmLnerPDRpLPAqh0bP8qUBSVHfmhA==}
+    engines: {node: '>=10'}
+
   '@vue-macros/common@1.16.1':
     resolution: {integrity: sha512-Pn/AWMTjoMYuquepLZP813BIcq8DTZiNCoaceuNlvaYuOTd8DqBZWc5u0uOMQZMInwME1mdSmmBAcTluiV9Jtg==}
     engines: {node: '>=16.14.0'}
@@ -5858,6 +5868,9 @@ packages:
   aws4@1.13.2:
     resolution: {integrity: sha512-lHe62zvbTB5eEABUVi/AwVh0ZKY9rMMDhmm+eeyuuUQbQ3+J+fONVQOZyj+DdrvD4BY33uYniyRJ4UJIaSKAfw==}
 
+  axios-adapter-uniapp@0.1.4:
+    resolution: {integrity: sha512-4je5JcWGrrTjPEJXVXJZnOkv+BsnYn/fKbQmjxzdCGFyoQw1gq3tfQ4/WhLzy+Gi9cQJl3K8EH26G7U0BK3wcw==}
+
   axios-mock-adapter@1.22.0:
     resolution: {integrity: sha512-dmI0KbkyAhntUR05YY96qg2H6gg0XMl2+qTW0xmYg6Up+BFBAJYRLROMXRdDEL06/Wqwa0TJThAYvFtSFdRCZw==}
     peerDependencies:
@@ -5866,6 +5879,9 @@ packages:
   axios@0.21.4:
     resolution: {integrity: sha512-ut5vewkiu8jjGBdqpM44XxjuCjq9LAKeHVmoVfHVzy8eHgxxq8SbAVQNovDA8mVi05kP0Ea/n/UzcSHcTJQfNg==}
 
+  axios@0.27.2:
+    resolution: {integrity: sha512-t+yRIyySRTp/wua5xEr+z1q60QmLq8ABsS5O9Me1AsE5dfKqgnCFzwiCZZ/cGNd1lq4/7akDWMxdhVlucjmnOQ==}
+
   axios@1.9.0:
     resolution: {integrity: sha512-re4CqKTJaURpzbLHtIi6XpDv20/CnpXOtjRY5/CU32L8gU8ek9UIivcfvSWvmKEngmVbrUtPpdDwWDWL7DNHvg==}
 
@@ -7469,6 +7485,9 @@ packages:
   eventemitter3@2.0.3:
     resolution: {integrity: sha512-jLN68Dx5kyFHaePoXWPsCGW5qdyZQtLYHkxkg02/Mz6g0kYpDx4FyP6XfArhQdlOC4b8Mv+EMxPo/8La7Tzghg==}
 
+  eventemitter3@4.0.7:
+    resolution: {integrity: sha512-8guHBZCwKnFhYdHr2ysuRWErTwhoN2X8XELRlrRwpmfeY2jjuUN4taQMsULKUVo1K4DvZl+0pgfyoysHxvmvEw==}
+
   eventemitter3@5.0.1:
     resolution: {integrity: sha512-GWkBvjiSZK87ELrYOSESUYeVIc9mvLLf/nXalMOS5dYrgZq9o5OVkbZAVM06CVxYsCwH9BDZFPlQTlPA1j4ahA==}
 
@@ -8117,6 +8136,19 @@ packages:
     resolution: {integrity: sha512-T1gkAiYYDWYx3V5Bmyu7HcfcvL7mUrTWiM6yOfa3PIphViJ/gFPbvidQ+veqSOHci/PxBcDabeUNCzpOODJZig==}
     engines: {node: '>= 14'}
 
+  http-proxy-middleware@2.0.9:
+    resolution: {integrity: sha512-c1IyJYLYppU574+YI7R4QyX2ystMtVXZwIdzazUIPIJsHuWNd+mho2j+bKoHftndicGj9yh+xjd+l0yj7VeT1Q==}
+    engines: {node: '>=12.0.0'}
+    peerDependencies:
+      '@types/express': ^4.17.13
+    peerDependenciesMeta:
+      '@types/express':
+        optional: true
+
+  http-proxy@1.18.1:
+    resolution: {integrity: sha512-7mz/721AbnJwIVbnaSv1Cz3Am0ZLT/UBwkC92VlxhXv/k/BBQfM2fXElQNC27BVGr0uwUpplYPQM9LnaBMR5NQ==}
+    engines: {node: '>=8.0.0'}
+
   http-signature@1.2.0:
     resolution: {integrity: sha512-CAbnr6Rz4CYQkLYUtSNXxQPUH2gK8f3iWexVlsnMeD+GjlsQ0Xsy1cOX+mN3dtxYomRy21CiOzU8Uhw6OwncEQ==}
     engines: {node: '>=0.8', npm: '>=1.3.7'}
@@ -8420,6 +8452,10 @@ packages:
     resolution: {integrity: sha512-YWnfyRwxL/+SsrWYfOpUtz5b3YD+nyfkHvjbcanzk8zgyO4ASD67uVMRt8k5bM4lLMDnXfriRhOpemw+NfT1eA==}
     engines: {node: '>=8'}
 
+  is-plain-obj@3.0.0:
+    resolution: {integrity: sha512-gwsOE28k+23GP1B6vFl1oVh/WOzmawBrKwo5Ev6wMKzPkaXaCDIQKzLnvsA42DRlbVTWorkgTKIviAKCWkfUwA==}
+    engines: {node: '>=10'}
+
   is-plain-obj@4.1.0:
     resolution: {integrity: sha512-+Pgi+vMuUNkJyExiMBt5IlFoMyKnr5zhJ4Uspz58WOhBF5QoIZkFyNHIbBAtHwzVAgk5RtndVNsDRN61/mmDqg==}
     engines: {node: '>=12'}
@@ -10990,6 +11026,9 @@ packages:
   require-main-filename@2.0.0:
     resolution: {integrity: sha512-NKN5kMDylKuldxYLSUfrbo5Tuzh4hd+2E8NPPX02mZtn1VuREQToYe/ZdlJy+J3uCpfaiGF05e7B8W0iXbQHmg==}
 
+  requires-port@1.0.0:
+    resolution: {integrity: sha512-KigOCHcocU3XODJxsu8i/j8T9tzT4adHiecwORRQ0ZZFcp7ahwXuRU1m+yuO90C5ZUyGeGfocHDI14M3L3yDAQ==}
+
   requizzle@0.2.4:
     resolution: {integrity: sha512-JRrFk1D4OQ4SqovXOgdav+K8EAhSB/LJZqCz8tbX0KObcdeM15Ss59ozWMBWmmINMagCwmqn4ZNryUGpBsl6Jw==}
 
@@ -11848,6 +11887,9 @@ packages:
     resolution: {integrity: sha512-6udB24Q737UD/SDsKAHI9FCRP7Bqc9D/MQUV02ORQg5iskjtLJlZJNdN4kKtcdtwCeWIwIHDGaUsTsCCAa8sFQ==}
     engines: {node: '>=10'}
 
+  tos-crc64-js@0.0.1:
+    resolution: {integrity: sha512-l2Ndi9BaDH3gmAJ5VIS/1WeqFcucK41WCbw5dije24k2XtUCclYfvhntWIVHe+0S85QcED4vjqm3AO1izlQ30g==}
+
   tough-cookie@2.5.0:
     resolution: {integrity: sha512-nlLsUzgm1kfLXSXfRZMc1KLAugd4hqJHDTvc2hDIwS3mZAfMEuMbc03SujMF+GEcpaX/qboeycw6iO8JwVv2+g==}
     engines: {node: '>=0.8'}
@@ -17722,6 +17764,10 @@ snapshots:
 
   '@types/http-errors@2.0.4': {}
 
+  '@types/http-proxy@1.17.17':
+    dependencies:
+      '@types/node': 20.17.47
+
   '@types/istanbul-lib-coverage@2.0.6': {}
 
   '@types/istanbul-lib-report@3.0.3':
@@ -17747,7 +17793,7 @@ snapshots:
 
   '@types/keyv@3.1.4':
     dependencies:
-      '@types/node': 18.19.100
+      '@types/node': 20.17.47
 
   '@types/koa-compose@3.2.8':
     dependencies:
@@ -17842,14 +17888,14 @@ snapshots:
 
   '@types/responselike@1.0.3':
     dependencies:
-      '@types/node': 18.19.100
+      '@types/node': 20.17.47
 
   '@types/semver@7.7.0': {}
 
   '@types/send@0.17.4':
     dependencies:
       '@types/mime': 1.3.5
-      '@types/node': 18.19.100
+      '@types/node': 20.17.47
 
   '@types/serve-static@1.15.7':
     dependencies:
@@ -18271,6 +18317,21 @@ snapshots:
       - buffer
       - supports-color
 
+  '@volcengine/tos-sdk@2.9.1':
+    dependencies:
+      axios: 0.21.4(debug@4.4.3)
+      axios-adapter-uniapp: 0.1.4(debug@4.4.3)
+      crypto-js: 4.2.0
+      debug: 4.4.3(supports-color@8.1.1)
+      http-proxy-middleware: 2.0.9(debug@4.4.3)
+      lodash: 4.17.21
+      qs: 6.14.0
+      tos-crc64-js: 0.0.1
+      type-fest: 1.4.0
+    transitivePeerDependencies:
+      - '@types/express'
+      - supports-color
+
   '@vue-macros/common@1.16.1(vue@3.5.14(typescript@5.9.3))':
     dependencies:
       '@vue/compiler-sfc': 3.5.14
@@ -18982,6 +19043,12 @@ snapshots:
 
   aws4@1.13.2: {}
 
+  axios-adapter-uniapp@0.1.4(debug@4.4.3):
+    dependencies:
+      axios: 0.27.2(debug@4.4.3)
+    transitivePeerDependencies:
+      - debug
+
   axios-mock-adapter@1.22.0(axios@1.9.0):
     dependencies:
       axios: 1.9.0(debug@4.4.3)
@@ -18994,6 +19061,13 @@ snapshots:
     transitivePeerDependencies:
       - debug
 
+  axios@0.27.2(debug@4.4.3):
+    dependencies:
+      follow-redirects: 1.15.9(debug@4.4.3)
+      form-data: 4.0.2
+    transitivePeerDependencies:
+      - debug
+
   axios@1.9.0(debug@4.4.3):
     dependencies:
       follow-redirects: 1.15.9(debug@4.4.3)
@@ -20780,13 +20854,13 @@ snapshots:
       resolve: 1.22.10
       semver: 6.3.1
 
-  eslint-plugin-prettier@3.4.1(eslint-config-prettier@8.10.0(eslint@8.57.0))(eslint@7.32.0)(prettier@2.8.8):
+  eslint-plugin-prettier@3.4.1(eslint-config-prettier@8.10.0(eslint@7.32.0))(eslint@7.32.0)(prettier@2.8.8):
     dependencies:
       eslint: 7.32.0
       prettier: 2.8.8
       prettier-linter-helpers: 1.0.0
     optionalDependencies:
-      eslint-config-prettier: 8.10.0(eslint@8.57.0)
+      eslint-config-prettier: 8.10.0(eslint@7.32.0)
 
   eslint-plugin-prettier@4.2.1(eslint-config-prettier@8.10.0(eslint@8.57.0))(eslint@8.57.0)(prettier@2.8.8):
     dependencies:
@@ -20985,6 +21059,8 @@ snapshots:
 
   eventemitter3@2.0.3: {}
 
+  eventemitter3@4.0.7: {}
+
   eventemitter3@5.0.1: {}
 
   events@3.3.0: {}
@@ -21746,6 +21822,24 @@ snapshots:
     transitivePeerDependencies:
       - supports-color
 
+  http-proxy-middleware@2.0.9(debug@4.4.3):
+    dependencies:
+      '@types/http-proxy': 1.17.17
+      http-proxy: 1.18.1(debug@4.4.3)
+      is-glob: 4.0.3
+      is-plain-obj: 3.0.0
+      micromatch: 4.0.8
+    transitivePeerDependencies:
+      - debug
+
+  http-proxy@1.18.1(debug@4.4.3):
+    dependencies:
+      eventemitter3: 4.0.7
+      follow-redirects: 1.15.9(debug@4.4.3)
+      requires-port: 1.0.0
+    transitivePeerDependencies:
+      - debug
+
   http-signature@1.2.0:
     dependencies:
       assert-plus: 1.0.0
@@ -22017,6 +22111,8 @@ snapshots:
 
   is-plain-obj@2.1.0: {}
 
+  is-plain-obj@3.0.0: {}
+
   is-plain-obj@4.1.0: {}
 
   is-plain-object@2.0.4:
@@ -23190,7 +23286,7 @@ snapshots:
       eslint: 7.32.0
       eslint-config-prettier: 8.10.0(eslint@7.32.0)
       eslint-plugin-node: 11.1.0(eslint@7.32.0)
-      eslint-plugin-prettier: 3.4.1(eslint-config-prettier@8.10.0(eslint@8.57.0))(eslint@7.32.0)(prettier@2.8.8)
+      eslint-plugin-prettier: 3.4.1(eslint-config-prettier@8.10.0(eslint@7.32.0))(eslint@7.32.0)(prettier@2.8.8)
       execa: 5.1.1
       inquirer: 7.3.3
       json5: 2.2.3
@@ -24825,6 +24921,8 @@ snapshots:
 
   require-main-filename@2.0.0: {}
 
+  requires-port@1.0.0: {}
+
   requizzle@0.2.4:
     dependencies:
       lodash: 4.17.21
@@ -25826,6 +25924,8 @@ snapshots:
       '@tokenizer/token': 0.3.0
       ieee754: 1.2.1
 
+  tos-crc64-js@0.0.1: {}
+
   tough-cookie@2.5.0:
     dependencies:
       psl: 1.15.0