package cmd import ( "fmt" "io/ioutil" "strings" "time" "github.com/olekukonko/tablewriter" "github.com/teamhephy/controller-sdk-go" "github.com/teamhephy/controller-sdk-go/certs" dtime "github.com/teamhephy/controller-sdk-go/pkg/time" "github.com/teamhephy/workflow-cli/settings" ) const dateFormat = "2 Jan 2006" // CertsList lists certs registered with the controller. func (d *DeisCmd) CertsList(results int, now time.Time) error { s, err := settings.Load(d.ConfigFile) if err != nil { return err } if results == defaultLimit { results = s.Limit } certList, _, err := certs.List(s.Client, results) if d.checkAPICompatibility(s.Client, err) != nil { return err } if len(certList) == 0 { d.Println("No certs") return nil } table := tablewriter.NewWriter(d.WOut) table.SetAlignment(tablewriter.ALIGN_LEFT) table.SetBorder(false) table.SetAutoFormatHeaders(false) table.SetHeaderLine(true) table.SetHeader([]string{"Name", "Common Name", "SubjectAltName", "Expires", "Fingerprint", "Domains", "Updated", "Created"}) for _, cert := range certList { domains := strings.Join(cert.Domains, ",") san := strings.Join(cert.SubjectAltName, ",") expires := "unknown" if cert.Expires.Time != nil { expires = cert.Expires.Format(dateFormat) if cert.Expires.Time.Before(now) { expires += " (expired)" } else { // Ghetto solution expires += " (in" year := cert.Expires.Time.Year() - now.Year() month := cert.Expires.Time.Month() - now.Month() day := cert.Expires.Time.Day() - now.Day() if year > 0 { expires += fmt.Sprintf(" %d year", year) if year > 1 { expires += "s" } } else if month > 0 { expires += fmt.Sprintf(" %d month", month) if month > 1 { expires += "s" } } else if day != 0 { expires += fmt.Sprintf(" %d day", day) if day > 1 { expires += "s" } } expires += ")" } } created := safeGetTime(cert.Created) updated := safeGetTime(cert.Updated) // show a shorter version of the fingerprint fingerprint := cert.Fingerprint if len(cert.Fingerprint) > 4 { fingerprint = cert.Fingerprint[:5] + "[...]" + cert.Fingerprint[len(cert.Fingerprint)-5:] } table.Append([]string{cert.Name, cert.CommonName, san, expires, fingerprint, domains, updated, created}) } table.Render() return nil } // CertAdd adds a cert to the controller. func (d *DeisCmd) CertAdd(cert string, key string, name string) error { s, err := settings.Load(d.ConfigFile) if err != nil { return err } d.Print("Adding SSL endpoint... ") quit := progress(d.WOut) err = d.doCertAdd(s.Client, cert, key, name) quit <- true <-quit if err != nil { return err } d.Println("done") return nil } func (d *DeisCmd) doCertAdd(c *deis.Client, cert string, key string, name string) error { certFile, err := ioutil.ReadFile(cert) if err != nil { return err } keyFile, err := ioutil.ReadFile(key) if err != nil { return err } _, err = certs.New(c, string(certFile), string(keyFile), name) return d.checkAPICompatibility(c, err) } // CertRemove deletes a cert from the controller. func (d *DeisCmd) CertRemove(name string) error { s, err := settings.Load(d.ConfigFile) if d.checkAPICompatibility(s.Client, err) != nil { return err } d.Printf("Removing %s... ", name) quit := progress(d.WOut) err = certs.Delete(s.Client, name) quit <- true <-quit if d.checkAPICompatibility(s.Client, err) != nil { return err } d.Println("done") return nil } // CertInfo gets info about certficiate func (d *DeisCmd) CertInfo(name string) error { s, err := settings.Load(d.ConfigFile) if err != nil { return err } cert, err := certs.Get(s.Client, name) if d.checkAPICompatibility(s.Client, err) != nil { return err } domains := strings.Join(cert.Domains[:], ",") if domains == "" { domains = "No connected domains" } san := strings.Join(cert.SubjectAltName[:], ",") if san == "" { san = "N/A" } expires := safeGetTime(cert.Expires) starts := safeGetTime(cert.Starts) created := safeGetTime(cert.Created) updated := safeGetTime(cert.Updated) d.Printf("=== %s Certificate\n", cert.Name) d.Println("Common Name(s): ", cert.CommonName) d.Println("Expires At: ", expires) d.Println("Starts At: ", starts) d.Println("Fingerprint: ", cert.Fingerprint) d.Println("Subject Alt Name: ", san) d.Println("Issuer: ", cert.Issuer) d.Println("Subject: ", cert.Subject) d.Println() d.Println("Connected Domains: ", domains) d.Println("Owner: ", cert.Owner) d.Println("Created: ", created) d.Println("Updated: ", updated) return nil } // CertAttach attaches a certificate to a domain func (d *DeisCmd) CertAttach(name, domain string) error { s, err := settings.Load(d.ConfigFile) if err != nil { return err } d.Printf("Attaching certificate %s to domain %s... ", name, domain) quit := progress(d.WOut) err = certs.Attach(s.Client, name, domain) quit <- true <-quit if d.checkAPICompatibility(s.Client, err) == nil { d.Println("done") } return err } // CertDetach detaches a certificate from a domain func (d *DeisCmd) CertDetach(name, domain string) error { s, err := settings.Load(d.ConfigFile) if err != nil { return err } d.Printf("Detaching certificate %s from domain %s... ", name, domain) quit := progress(d.WOut) err = certs.Detach(s.Client, name, domain) quit <- true <-quit if d.checkAPICompatibility(s.Client, err) != nil { return err } d.Println("done") return nil } func safeGetTime(t dtime.Time) string { out := "unknown" if t.Time != nil { out = t.Format(dateFormat) } return out }