Security News
Node.js EOL Versions CVE Dubbed the "Worst CVE of the Year" by Security Experts
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
@vladmandic/piacme
Advanced tools
Simple ACME/LetsEncrypt HTTP/SSL Certificate Management
Initialize PiACME by passing a configuration object:
const config = {
application: 'example/0.0.1', // website or application signature, can be any string
domains: ['example1.com', 'example2.com'], // list of domains for which we're getting a certificate for (same certificate can be used for multiple domain). must be resolvable and reachable over internet for validation before certificate can be issued.
maintainer: 'maintainer@example.com', // email of the person responsible for the site for which we're getting certificate for
subscriber: 'subscriber@example.com', // email of the person that will be registered with LetsEncrypt, can be the same as maintainer
accountFile: './cert/account.json', // file where account info will be stored once account is created
accountKeyFile: './cert/account.pem', // file where account secret will be stored once account is created
ServerKeyFile: './cert//private.pem', // file where server private key will be stored
fullChain: './cert/fullchain.pem', // file where server certificate will be stored
};
const piacme = require('piacme');
piacme.init(config);
const { Key, Crt } = await acme.getCert();
Now you're free to use server key and certificate.
For example to start a secure http2 server:
const http2 = require('http2');
const opts = {
key = fs.readFileSync(Key);
cert = fs.readFileSync(Crt);
};
const server = http2.createSecureServer(opts);
server.listen(443);
All functions use same object passed during init()
call.
Core function is getCert() and it will either return existing valid certificate, issue a new one or trigger a certificate renewal.
Internally, it calls piacme.checkCert()
to verify if server key and certificate specified in config object already exists and are valid.
If yes, it will just return those objects: config.ServerKeyFile
and config.fullChain
.
If not, if calls:
piacme.createKeys()
piacme.createCert()
Next, it calls parseCert()
and parses cetificate details for validity before returning server key and certificate.
To monitor certificate, call monitorCert()
which updates object initially passed using init()
call by triggering getCert()
every 12 hours.
Usefull for certfificates with short lifespan that require freqent renewals.
To get certificate details, call parseCert()
and it will parse certificate from the initial object used during init()
call.
const ssl = await parseCert();
ssl: {
account: { error?, contact, createdAt },
serverKey: { error? },
accountKey: { error? },
fullChain: { error?, subject, issuer, notBefore, notAfter }
}
FAQs
Simple ACME/LetsEncrypt HTTP/SSL Certificate Management
The npm package @vladmandic/piacme receives a total of 4 weekly downloads. As such, @vladmandic/piacme popularity was classified as not popular.
We found that @vladmandic/piacme demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
Security News
cURL and Go security teams are publicly rejecting CVSS as flawed for assessing vulnerabilities and are calling for more accurate, context-aware approaches.
Security News
Bun 1.2 enhances its JavaScript runtime with 90% Node.js compatibility, built-in S3 and Postgres support, HTML Imports, and faster, cloud-first performance.