janpeter/Ops-dashboard
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(caddy): add caddy_list_certs whitelist entry and cert parser

Browse source 
- Extend commands.yml.example with caddy_list_certs (sh loop over /data/caddy/certificates/*/*.crt using openssl)
- Add lib/parse-caddy.ts: parseCertList() parses CERTFILE/CERTEND delimited openssl output
- Add shiki ^1.29.2 dependency for server-side Caddyfile syntax highlighting

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Scrum4Me Agent 2026-05-13 17:48:41 +02:00
parent c12e36e0a4
commit 1c51a0868f
3 changed files with 62 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

54
lib/parse-caddy.ts Normal file
View file

@ -0,0 +1,54 @@
export interface CertInfo {
domain: string
subject: string
issuer: string
issuerCN: string
notBefore: string
notAfter: string
expiringWarning: boolean
expired: boolean
}
export function parseCertList(output: string): CertInfo[] {
const certs: CertInfo[] = []
const blocks = output.split('CERTEND')
for (const block of blocks) {
const fileMatch = block.match(/CERTFILE:(.+)/)
if (!fileMatch) continue
const filePath = fileMatch[1].trim()
const domain = filePath.split('/').filter(Boolean).pop()?.replace(/\.crt$/, '') ?? ''
let subject = ''
let issuer = ''
let notBefore = ''
let notAfter = ''
for (const line of block.split('\n')) {
const subjectMatch = line.match(/^subject=(.+)/)
if (subjectMatch) subject = subjectMatch[1].trim()
const issuerMatch = line.match(/^issuer=(.+)/)
if (issuerMatch) issuer = issuerMatch[1].trim()
const notBeforeMatch = line.match(/^notBefore=(.+)/)
if (notBeforeMatch) notBefore = notBeforeMatch[1].trim()
const notAfterMatch = line.match(/^notAfter=(.+)/)
if (notAfterMatch) notAfter = notAfterMatch[1].trim()
}
const issuerCN = issuer.match(/CN\s*=\s*([^,]+)/)?.[1]?.trim() ?? issuer
const now = Date.now()
const notAfterDate = notAfter ? new Date(notAfter) : null
const notAfterMs = notAfterDate?.getTime() ?? Infinity
const expiringWarning = notAfterMs - now < 30 * 24 * 60 * 60 * 1000
const expired = notAfterMs < now
certs.push({ domain, subject, issuer, issuerCN, notBefore, notAfter, expiringWarning, expired })
}
return certs
}