[pbs-devel] [RFC backup 00/23] Implements ACME suport for PBS
Wolfgang Bumiller
w.bumiller at proxmox.com
Fri Apr 16 15:34:53 CEST 2021
Reusing the ACME UI elements from the widget toolkit and therefore
providing a compatible API and pretty much the same config file layout.
Contains the async version of the acme client directly in the tree here,
though it may also be an option to move it to proxmox-acme-rs w/ a
feature-gate. (The code is also very similar to the sync version so
there's a possibility that the implementation could be wrapped in a
macro...)
The series starts out with some helpers & refactoring, followed by a
serde-driven config file format read/writer (meant to be (or become)
compatible to what we have in perl via PVE::JSONSchema::parse_config,
but without the json::Value intermediate step), followed by the config,
client & api call implementation.
(Wildcard support like stoiko just added to PMG still needs to be added,
though...)
Wolfgang Bumiller (23):
systemd: add reload_unit
add dns alias schema
tools::fs::scan_subdir: use nix::Error instead of anyhow
tools::http: generic 'fn request' and dedup agent string
config: factor out certificate writing
CertInfo: add not_{after,before}_unix
CertInfo: add is_expired_after_epoch
tools: add ControlFlow type
catalog shell: replace LoopState with ControlFlow
Cargo.toml: depend on proxmox-acme-rs
bump d/control
config::acl: make /system/certificates a valid path
add 'config file format' to tools::config
add node config
add acme config
add async acme client implementation
add config/acme api path
add node/{node}/certificates api call
add node/{node}/config api path
add acme commands to proxmox-backup-manager
implement standalone acme validation
ui: add certificate & acme view
daily-update: check acme certificates
Cargo.toml | 3 +
debian/control | 2 +
src/acme/client.rs | 627 +++++++++++++++++++++
src/acme/mod.rs | 2 +
src/api2/config.rs | 2 +
src/api2/config/acme.rs | 719 +++++++++++++++++++++++++
src/api2/node.rs | 4 +
src/api2/node/certificates.rs | 572 ++++++++++++++++++++
src/api2/node/config.rs | 81 +++
src/api2/types/mod.rs | 10 +
src/backup/catalog_shell.rs | 18 +-
src/bin/proxmox-backup-manager.rs | 1 +
src/bin/proxmox-daily-update.rs | 30 +-
src/bin/proxmox_backup_manager/acme.rs | 414 ++++++++++++++
src/bin/proxmox_backup_manager/mod.rs | 2 +
src/config.rs | 55 +-
src/config/acl.rs | 2 +-
src/config/acme/mod.rs | 198 +++++++
src/config/acme/plugin.rs | 492 +++++++++++++++++
src/config/node.rs | 225 ++++++++
src/lib.rs | 2 +
src/tools.rs | 12 +
src/tools/cert.rs | 41 +-
src/tools/config/de.rs | 656 ++++++++++++++++++++++
src/tools/config/mod.rs | 89 +++
src/tools/config/ser.rs | 642 ++++++++++++++++++++++
src/tools/fs.rs | 2 +-
src/tools/http.rs | 10 +-
src/tools/systemd.rs | 11 +
www/Makefile | 1 +
www/NavigationTree.js | 6 +
www/config/CertificateView.js | 80 +++
32 files changed, 4972 insertions(+), 39 deletions(-)
create mode 100644 src/acme/client.rs
create mode 100644 src/acme/mod.rs
create mode 100644 src/api2/config/acme.rs
create mode 100644 src/api2/node/certificates.rs
create mode 100644 src/api2/node/config.rs
create mode 100644 src/bin/proxmox_backup_manager/acme.rs
create mode 100644 src/config/acme/mod.rs
create mode 100644 src/config/acme/plugin.rs
create mode 100644 src/config/node.rs
create mode 100644 src/tools/config/de.rs
create mode 100644 src/tools/config/mod.rs
create mode 100644 src/tools/config/ser.rs
create mode 100644 www/config/CertificateView.js
--
2.20.1
More information about the pbs-devel
mailing list