UNPKG

dmvic

Version:

A DMVIC NPM package to manage DMVIC certificate requests

github.com/coduori/dmvic

coduori/dmvic

50 lines (41 loc) 1.54 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
import { readFileSync } from 'node:fs'; import path from 'node:path'; import { inMemoryCache } from './cache.mjs'; import { validateCertConfig, validateCertContents, validateFilePaths, } from './config-validation/certificates-validator.mjs'; const readCertFiles = (resolvedCertConfig) => { const fileContents = {}; for (const [key, certPath] of Object.entries(resolvedCertConfig)) { try { // eslint-disable-next-line security/detect-non-literal-fs-filename fileContents[key] = readFileSync(certPath, 'utf8'); } catch (error) { throw new Error( `Error reading certificate "${key}" from path: ${certPath}. ${error.message}` ); } } return fileContents; }; const configureCertificates = (certConfig, environment, cache = inMemoryCache) => { validateCertConfig(certConfig); const resolvedCertConfig = { sslKey: path.resolve(certConfig.sslKey), sslCert: path.resolve(certConfig.sslCert), }; validateFilePaths(resolvedCertConfig); const fileContents = readCertFiles(resolvedCertConfig); validateCertContents(fileContents, environment); cache.set('sslKey', fileContents.sslKey); cache.set('sslCert', fileContents.sslCert); }; const getCertificate = (key, cache = inMemoryCache) => { if (!cache.has(key)) { throw new Error(`Certificate "${key}" is not configured or loaded.`); } return cache.get(key); }; export { configureCertificates, getCertificate };