feat: add aws route53 provider

2025-10-04 13:34:52 +00:00 · 2024-10-17 18:22:23 +08:00
parent 9db757fbbb
commit f87a1be192
22 changed files with 758 additions and 10 deletions
--- a/internal/applicant/applicant.go
+++ b/internal/applicant/applicant.go
@@ -1,6 +1,8 @@
 package applicant

 import (
+	"certimate/internal/domain"
+	"certimate/internal/utils/app"
 	"crypto"
 	"crypto/ecdsa"
 	"crypto/elliptic"
@@ -16,15 +18,13 @@ import (
 	"github.com/go-acme/lego/v4/lego"
 	"github.com/go-acme/lego/v4/registration"
 	"github.com/pocketbase/pocketbase/models"
-
-	"certimate/internal/domain"
-	"certimate/internal/utils/app"
 )

 const (
 	configTypeAliyun      = "aliyun"
 	configTypeTencent     = "tencent"
 	configTypeHuaweicloud = "huaweicloud"
+	configTypeAws         = "aws"
 	configTypeCloudflare  = "cloudflare"
 	configTypeNamesilo    = "namesilo"
 	configTypeGodaddy     = "godaddy"
@@ -127,6 +127,8 @@ func Get(record *models.Record) (Applicant, error) {
 		return NewTencent(option), nil
 	case configTypeHuaweicloud:
 		return NewHuaweiCloud(option), nil
+	case configTypeAws:
+		return NewAws(option), nil
 	case configTypeCloudflare:
 		return NewCloudflare(option), nil
 	case configTypeNamesilo:
--- a/internal/applicant/aws.go
+++ b/internal/applicant/aws.go
@@ -0,0 +1,38 @@
+package applicant
+
+import (
+	"certimate/internal/domain"
+	"encoding/json"
+	"fmt"
+	"os"
+
+	"github.com/go-acme/lego/v4/providers/dns/route53"
+)
+
+type aws struct {
+	option *ApplyOption
+}
+
+func NewAws(option *ApplyOption) Applicant {
+	return &aws{
+		option: option,
+	}
+}
+
+func (t *aws) Apply() (*Certificate, error) {
+	access := &domain.AwsAccess{}
+	json.Unmarshal([]byte(t.option.Access), access)
+
+	os.Setenv("AWS_REGION", access.Region)
+	os.Setenv("AWS_ACCESS_KEY_ID", access.AccessKeyId)
+	os.Setenv("AWS_SECRET_ACCESS_KEY", access.SecretAccessKey)
+	os.Setenv("AWS_HOSTED_ZONE_ID", access.HostedZoneId)
+	os.Setenv("AWS_PROPAGATION_TIMEOUT", fmt.Sprintf("%d", t.option.Timeout))
+
+	dnsProvider, err := route53.NewDNSProvider()
+	if err != nil {
+		return nil, err
+	}
+
+	return apply(t.option, dnsProvider)
+}
--- a/internal/domain/access.go
+++ b/internal/domain/access.go
@@ -16,6 +16,13 @@ type HuaweiCloudAccess struct {
 	SecretAccessKey string `json:"secretAccessKey"`
 }

+type AwsAccess struct {
+	Region          string `json:"region"`
+	AccessKeyId     string `json:"accessKeyId"`
+	SecretAccessKey string `json:"secretAccessKey"`
+	HostedZoneId    string `json:"hostedZoneId"`
+}
+
 type CloudflareAccess struct {
 	DnsApiToken string `json:"dnsApiToken"`
 }