【修复】长期持有tcp连接未关闭

【新增】支持通过webhook调用自己的服务解析dns记录
【新增】支持通过webhook推送证书和密钥
【新增】导入导出工作流、通知、证书、api授权数据
【新增】支持自定义插件目录

backend/internal/cert/apply/apply.go

@@ -4,7 +4,9 @@ import (
 	"ALLinSSL/backend/internal/access"
 	"ALLinSSL/backend/internal/cert"
 	"ALLinSSL/backend/internal/cert/apply/lego/jdcloud"
+	"ALLinSSL/backend/internal/cert/apply/lego/webhook"
 	"ALLinSSL/backend/public"
+	"crypto/tls"
 	"encoding/json"
 	"fmt"
 	azcorecloud "github.com/Azure/azure-sdk-for-go/sdk/azcore/cloud"
@@ -202,6 +204,10 @@ func GetDNSProvider(providerName string, creds map[string]string, httpClient *ht
 		config.SecretKey = creds["secret_key"]
 		config.PropagationTimeout = maxWait
 		return constellix.NewDNSProviderConfig(config)
+	case "webhook":
+		config := webhook.NewConfig(creds)
+		config.PropagationTimeout = maxWait
+		return webhook.NewDNSProviderConfig(config)
 
 	default:
 		return nil, fmt.Errorf("不支持的 DNS Provider: %s", providerName)
@@ -495,7 +501,9 @@ func Apply(cfg map[string]any, logger *public.Logger) (map[string]any, error) {
 		}
 		httpClient = &http.Client{
 			Transport: &http.Transport{
-				Proxy: http.ProxyURL(proxyURL),
+				Proxy:             http.ProxyURL(proxyURL),
+				TLSClientConfig:   &tls.Config{InsecureSkipVerify: true},
+				DisableKeepAlives: true,
 			},
 			Timeout: 30 * time.Second,
 		}

backend/internal/cert/apply/lego/webhook/lego.go

@@ -0,0 +1,77 @@
+package webhook
+
+import (
+	"ALLinSSL/backend/public"
+	"fmt"
+	"github.com/go-acme/lego/v4/challenge/dns01"
+	"time"
+)
+
+var configData string
+
+type Config struct {
+	WebhookConfig *public.WebhookConfig
+
+	PropagationTimeout time.Duration
+	PollingInterval    time.Duration
+	TTL                int
+	HTTPTimeout        time.Duration
+}
+
+type DNSProvider struct {
+	config *Config
+}
+
+func NewConfig(WebhookConfigStr map[string]string) *Config {
+	fmt.Println(WebhookConfigStr)
+
+	WebhookConfig := &public.WebhookConfig{
+		Url:       WebhookConfigStr["url"],
+		Data:      WebhookConfigStr["data"],
+		Method:    WebhookConfigStr["method"],
+		Headers:   WebhookConfigStr["headers"],
+		IgnoreSSL: WebhookConfigStr["ignore_ssl"] == "true",
+	}
+	fmt.Println(WebhookConfig.Url)
+
+	return &Config{
+		WebhookConfig:      WebhookConfig,
+		TTL:                600,
+		PropagationTimeout: dns01.DefaultPropagationTimeout,
+		PollingInterval:    dns01.DefaultPollingInterval,
+		HTTPTimeout:        30 * time.Second,
+	}
+}
+
+func NewDNSProviderConfig(config *Config) (*DNSProvider, error) {
+	if config == nil {
+		return nil, fmt.Errorf("配置不能为空")
+	}
+	return &DNSProvider{config: config}, nil
+}
+
+func (d *DNSProvider) Timeout() (timeout, interval time.Duration) {
+	return d.config.PropagationTimeout, d.config.PollingInterval
+}
+
+func (d *DNSProvider) Present(domain, token, keyAuth string) error {
+	fmt.Println(d.config.WebhookConfig.Url)
+	configData = d.config.WebhookConfig.Data
+	return d.send(domain, token, keyAuth, "present")
+}
+
+func (d *DNSProvider) CleanUp(domain, token, keyAuth string) error {
+	d.config.WebhookConfig.Data = configData
+	return d.send(domain, token, keyAuth, "cleanup")
+}
+
+func (d *DNSProvider) send(domain, token, keyAuth, action string) error {
+	info := dns01.GetChallengeInfo(domain, keyAuth)
+
+	data, err := public.ReplaceJSONPlaceholders(d.config.WebhookConfig.Data, map[string]interface{}{"domain": info.EffectiveFQDN, "token": token, "keyAuth": info.Value, "action": action})
+	if err != nil {
+		return fmt.Errorf("替换JSON占位符失败: %w", err)
+	}
+	d.config.WebhookConfig.Data = data
+	return d.config.WebhookConfig.Send()
+}