acme-types 0.1.1

Types for implementing ACME (RFC 8555) providers and clients
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224

#[cfg(feature = "json")]
use serde::{Deserialize, Deserializer, Serialize, Serializer};

/// Defines a new ACME order object
///
/// For more information, refer to [RFC 8555 § 7.4](https://datatracker.ietf.org/doc/html/rfc8555#section-7.4)
#[derive(Clone, Debug)]
#[cfg_attr(feature = "json", derive(Serialize, Deserialize))]
pub struct NewOrder {
    /// Array of requested identifiers
    pub identifiers: Vec<super::Identifier>,
    /// Requested value for certificate's notBefore value
    #[cfg_attr(feature = "json", serde(skip_serializing_if = "Option::is_none"))]
    #[cfg_attr(feature = "json", serde(rename = "notBefore"))]
    pub not_before: Option<String>,
    /// Requested value for certificate's notAfter value
    #[cfg_attr(feature = "json", serde(skip_serializing_if = "Option::is_none"))]
    #[cfg_attr(feature = "json", serde(rename = "notAfter"))]
    pub not_after: Option<String>,
}

#[cfg(feature = "json")]
impl NewOrder {
    /// Deserializes a NewOrder object from a JSON str
    pub fn from_str(s: &str) -> Result<NewOrder, serde_json::error::Error> {
        serde_json::from_str(s)
    }

    /// Serializes a NewOrder object to a JSON String
    pub fn to_string(&self) -> Result<String, serde_json::error::Error> {
        serde_json::to_string(self)
    }
}

/// Defines a new ACME order resource
///
/// For more information, refer to [RFC 8555 § 9.7.2](https://datatracker.ietf.org/doc/html/rfc8555#section-9.7.2)
#[derive(Clone, Debug)]
#[cfg_attr(feature = "json", derive(Serialize, Deserialize))]
pub struct Order {
    /// Order status
    pub status: OrderStatus,
    /// Order expiration time
    pub expires: String,
    /// Array of requested identifiers
    pub identifiers: Vec<super::Identifier>,
    /// Requested value for certificate's notBefore value
    #[cfg_attr(feature = "json", serde(skip_serializing_if = "Option::is_none"))]
    #[cfg_attr(feature = "json", serde(rename = "notBefore"))]
    pub not_before: Option<String>,
    /// Requested value for certificate's notAfter value
    #[cfg_attr(feature = "json", serde(skip_serializing_if = "Option::is_none"))]
    #[cfg_attr(feature = "json", serde(rename = "notAfter"))]
    pub not_after: Option<String>,
    /// Error encountered during domain validation, certificate issuance, etc.
    pub error: Option<String>,
    /// Authorizations which need to be completed in order to finalize the order
    pub authorizations: Option<String>,
    /// URL to finalize order
    pub finalize: String,
    /// URL to retrieve certificate issued by ACME provider
    pub certificate: String,
}

#[cfg(feature = "json")]
impl Order {
    /// Deserializes an Order object from a JSON str
    pub fn from_str(s: &str) -> Result<Order, serde_json::error::Error> {
        serde_json::from_str(s)
    }

    /// Serializes an Order object to a JSON String
    pub fn to_string(&self) -> Result<String, serde_json::error::Error> {
        serde_json::to_string(self)
    }
}

/// Defines an ACME order finalize object
///
/// For more information, refer to [RFC 8555 § 7.4](https://datatracker.ietf.org/doc/html/rfc8555#section-7.4)
#[derive(Clone, Debug)]
#[cfg_attr(feature = "json", derive(Serialize, Deserialize))]
pub struct OrderFinalize {
    /// CSR for the requested certificate (base64url-encoding of the DER-encoded CSR)
    #[cfg_attr(feature = "json", serde(rename = "csr"))]
    pub certificate_signing_request: String,
}

#[cfg(feature = "json")]
impl OrderFinalize {
    /// Deserializes an OrderFinalize object from a JSON str
    pub fn from_str(s: &str) -> Result<OrderFinalize, serde_json::error::Error> {
        serde_json::from_str(s)
    }

    /// Serializes an OrderFinalize object to a JSON String
    pub fn to_string(&self) -> Result<String, serde_json::error::Error> {
        serde_json::to_string(self)
    }
}

/// Order resource status values
///
/// For more information, refer to [RFC 8555 § 7.1.6](https://datatracker.ietf.org/doc/html/rfc8555#section-7.1.6)
#[derive(Clone, Debug)]
#[cfg_attr(feature = "json", derive(Serialize, Deserialize))]
pub enum OrderStatus {
    #[cfg_attr(feature = "json", serde(rename = "pending"))]
    Pending,
    #[cfg_attr(feature = "json", serde(rename = "ready"))]
    Ready,
    #[cfg_attr(feature = "json", serde(rename = "processing"))]
    Processing,
    #[cfg_attr(feature = "json", serde(rename = "valid"))]
    Valid,
    #[cfg_attr(feature = "json", serde(rename = "invalid"))]
    Invalid,
}

/// Defines a certificate revocation request
///
/// For more information, refer to [RFC 8555 § 7.6](https://datatracker.ietf.org/doc/html/rfc8555#section-7.6)
#[derive(Clone, Debug)]
#[cfg_attr(feature = "json", derive(Serialize, Deserialize))]
pub struct CertificateRevocation {
    /// base64url-encoding of the DER-encoded certificate to revoke
    pub certificate: String,
    /// Reason for certificate revocation
    ///
    /// For more information, refer to [RFC 5280 § 5.3.1](https://datatracker.ietf.org/doc/html/rfc5280#section-5.3.1)
    #[cfg_attr(feature = "json", serde(skip_serializing_if = "Option::is_none"))]
    #[cfg_attr(
        feature = "json",
        serde(serialize_with = "certificate_revocation_reason_serialize")
    )]
    #[cfg_attr(
        feature = "json",
        serde(deserialize_with = "certificate_revocation_reason_deserialize")
    )]
    pub reason: Option<CertificateRevocationReason>,
}

#[cfg(feature = "json")]
impl CertificateRevocation {
    /// Deserializes a CertificateRevocation object from a JSON str
    pub fn from_str(s: &str) -> Result<CertificateRevocation, serde_json::error::Error> {
        serde_json::from_str(s)
    }

    /// Serializes a CertificateRevocation object to a JSON String
    pub fn to_string(&self) -> Result<String, serde_json::error::Error> {
        serde_json::to_string(self)
    }
}

/// Certificate revocation reason values
///
/// For more information, refer to [RFC 5280 § 5.3.1](https://datatracker.ietf.org/doc/html/rfc5280#section-5.3.1)
#[derive(Clone, Debug)]
#[cfg_attr(feature = "json", derive(Serialize, Deserialize))]
pub enum CertificateRevocationReason {
    Unspecified,
    KeyCompromise,
    CertificateAuthorityCompromise,
    AffiliationChanged,
    Superseded,
    CessationOfOperation,
    CertificateHold,
    RemoveFromCertificateRevocationList,
    PrivilegeWithdrawn,
    AuthorityAttributeCompromise,
    Other(i32),
}

#[cfg(feature = "json")]
fn certificate_revocation_reason_deserialize<'de, D>(
    deserializer: D,
) -> Result<Option<CertificateRevocationReason>, D::Error>
where
    D: Deserializer<'de>,
{
    use self::CertificateRevocationReason::*;

    let n = String::deserialize(deserializer)?.parse::<i32>().unwrap();

    Ok(Some(match n {
        0 => Unspecified,
        1 => KeyCompromise,
        2 => CertificateAuthorityCompromise,
        3 => AffiliationChanged,
        4 => Superseded,
        5 => CessationOfOperation,
        6 => CertificateHold,
        8 => RemoveFromCertificateRevocationList,
        9 => PrivilegeWithdrawn,
        10 => AuthorityAttributeCompromise,
        _ => Other(n),
    }))
}

#[cfg(feature = "json")]
fn certificate_revocation_reason_serialize<S>(
    type_: &Option<CertificateRevocationReason>,
    serializer: S,
) -> Result<S::Ok, S::Error>
where
    S: Serializer,
{
    use self::CertificateRevocationReason::*;

    serializer.serialize_i32(match type_.clone().unwrap() {
        Other(i) => i,
        Unspecified => 0,
        KeyCompromise => 1,
        CertificateAuthorityCompromise => 2,
        AffiliationChanged => 3,
        Superseded => 4,
        CessationOfOperation => 5,
        CertificateHold => 6,
        RemoveFromCertificateRevocationList => 8,
        PrivilegeWithdrawn => 9,
        AuthorityAttributeCompromise => 10,
    })
}