package main import ( "crypto/rsa" "flag" "log" "os" "path" "dim13.org/acme" ) var confName = flag.String("conf", "acme.toml", "configuration file") func chkKey(k PrivKey) (*rsa.PrivateKey, error) { key := k.KeyPath() if _, err := os.Stat(key); os.IsNotExist(err) { log.Println("allocating", key, k.Size()) if err := os.MkdirAll(path.Dir(key), 0700); err != nil { return nil, err } flags := os.O_WRONLY | os.O_CREATE | os.O_TRUNC fd, err := os.OpenFile(key, flags, 0600) if err != nil { return nil, err } defer fd.Close() return acme.NewKey(fd, k.Size()) } else { fd, err := os.Open(key) if err != nil { return nil, err } defer fd.Close() return acme.LoadKey(fd) } } func chkCert(k Cert) error { cert := k.CertPath() if _, err := os.Stat(cert); os.IsNotExist(err) { return err } return nil } func chkKeys(c *Config) error { var err error for k, acc := range c.Account { acc.key, err = chkKey(acc) if err != nil { return err } c.Account[k] = acc } for k, des := range c.Desire { des.key, err = chkKey(des) if err != nil { return err } err = chkCert(des) if err != nil { log.Println(k, "cert missing") _, err = acme.NewCSR(des.Altnames, des.account.key) if err != nil { log.Fatal(err) } } c.Desire[k] = des } return nil } func main() { flag.Parse() conf, err := LoadConfig(*confName) if err != nil { log.Fatal(err) } err = chkKeys(conf) if err != nil { log.Fatal(err) } log.Println(conf) for k, des := range conf.Desire { log.Println(k, des.account) } for k, des := range conf.Desire { a, _ := acme.NewAccount(des.account.Mail, des.account.Phone, des.account.key) log.Println(k, a) c, err := acme.NewClient(des.provider.Directory) if err != nil { log.Println(err) } r, err := c.Register(a) if err != nil { log.Println(err) } log.Println(k, c) log.Println(k, r) r, err = c.Query(a) if err != nil { log.Println(err) } log.Println(k, c) log.Println(k, r) } }