add feat: support for tencent cdn extensive domain

2025-08-07 01:41:47 +00:00 · 2024-10-10 19:01:32 +08:00
parent dc16294b3d
commit d2b6ab75b7
3 changed files with 49 additions and 3 deletions
--- a/internal/deployer/tencent_cdn.go
+++ b/internal/deployer/tencent_cdn.go
@@ -5,11 +5,14 @@ import (
 	"certimate/internal/utils/rand"
 	"context"
 	"encoding/json"
+	"encoding/base64"
 	"fmt"
+	"strings"

 	"github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common"
 	"github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common/profile"
 	ssl "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/ssl/v20191205"
+	cdn "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/cdn/v20180606"
 )

 type tencentCdn struct {
@@ -89,14 +92,29 @@ func (t *tencentCdn) deploy(certId string) error {
 	// 实例化要请求产品的client对象,clientProfile是可选的
 	client, _ := ssl.NewClient(t.credential, "", cpf)

+
+
 	// 实例化一个请求对象,每个接口都会对应一个request对象
 	request := ssl.NewDeployCertificateInstanceRequest()

 	request.CertificateId = common.StringPtr(certId)
-	request.InstanceIdList = common.StringPtrs([]string{t.option.Domain})
 	request.ResourceType = common.StringPtr("cdn")
 	request.Status = common.Int64Ptr(1)

+	// 如果是泛域名就从cdn列表下获取SSL证书中的可用域名
+	if(strings.Contains(t.option.Domain, "*")){
+		list, err_get_list := t.getDomainList()
+		if err_get_list != nil {
+			return fmt.Errorf("failed to get certificate domain list: %w", err_get_list)
+		}
+		if list == nil || len(list) == 0 {
+			return fmt.Errorf("failed to get certificate domain list: empty list.")
+		}
+		request.InstanceIdList = common.StringPtrs(list)
+	}else{ // 否则直接使用传入的域名
+		request.InstanceIdList = common.StringPtrs([]string{t.option.Domain})
+	}
+
 	// 返回的resp是一个DeployCertificateInstanceResponse的实例，与请求对象对应
 	resp, err := client.DeployCertificateInstance(request)

@@ -106,3 +124,27 @@ func (t *tencentCdn) deploy(certId string) error {
 	t.infos = append(t.infos, toStr("部署证书", resp.Response))
 	return nil
 }
+
+func (t *tencentCdn) getDomainList() ([]string, error) {
+	cpf := profile.NewClientProfile()
+	cpf.HttpProfile.Endpoint = "cdn.tencentcloudapi.com"
+	client, _ := cdn.NewClient(t.credential, "", cpf)
+
+	request := cdn.NewDescribeCertDomainsRequest()
+
+	cert := base64.StdEncoding.EncodeToString([]byte(t.option.Certificate.Certificate))
+	request.Cert = &cert
+	
+
+	response, err := client.DescribeCertDomains(request)
+	if err != nil {
+		return nil, fmt.Errorf("failed to get domain list: %w", err)
+	}
+
+	domains := make([]string, 0)
+	for _, domain := range response.Response.Domains {
+		domains = append(domains, *domain)
+	}
+
+	return domains, nil
+}