ACME-PS

1.0.0

functions/Challenge/Initialize-Challenge.ps1

                                function Initialize-Challenge {

    <#

        .SYNOPSIS

            Prepares a challange with the data explaining how to complete it.

        .DESCRIPTION

            Provides the data how to resolve the challange into the challanges data property.

        .PARAMETER State

            The state object, that is used in this module, to provide easy access to the ACME service directory,

            your account key, the associated account and the replay nonce.

        .PARAMETER Authorization

            The authorization of which all challanges will be initialized.

        .PARAMETER Challenge

            The challenge which should be initialized.

        .PARAMETER PassThru

            Forces the command to return the data to the pipeline.

        .EXAMPLE

            PS> Initialize-Challange $myState -Challange $challange

    #>

    [CmdletBinding()]

    param(

        [Parameter(Mandatory = $true, Position = 0)]

        [ValidateNotNull()]

        [ValidateScript({$_.Validate()})]

        [AcmeState]

        $State,

        [Parameter(Mandatory = $true, ValueFromPipeline = $true, Position = 1, ParameterSetName="ByAuthorization")]

        [ValidateNotNull()]

        [AcmeAuthorization] $Authorization,

        [Parameter(Mandatory = $true, ValueFromPipeline = $true, Position = 1, ParameterSetName="ByChallenge")]

        [ValidateNotNull()]

        [AcmeChallenge] $Challenge,

        [Parameter()]

        [switch]

        $PassThru

    )

    process {

        if($PSCmdlet.ParameterSetName -eq "ByAuthorization") {

            return ($Authorization.challenges | Initialize-Challenge $State -PassThru:$PassThru);

        }

        $accountKey = $State.GetAccountKey();

        switch($Challenge.Type) {

            "http-01" {

                $fileName = $Challenge.Token;

                $relativePath = "/.well-known/acme-challenge/$fileName"

                $fqdn = "$($Challenge.Identifier.Value)$relativePath"

                $content = [KeyAuthorization]::Compute($AccountKey, $Challenge.Token);

                $Challenge.Data = [PSCustomObject]@{

                    "Type" = $Challenge.Type;

                    "Token" = $Challenge.Token;

                    "Filename" = $fileName;

                    "RelativeUrl" = $relativePath;

                    "AbsoluteUrl" = $fqdn;

                    "Content" = $content;

                }

            }

            "dns-01" {

                $txtRecordName = "_acme-challenge.$($Challenge.Identifier.Value)";

                $content = [KeyAuthorization]::ComputeDigest($AccountKey, $Challenge.Token);

                $Challenge.Data =  [PSCustomObject]@{

                    "Type" = "dns-01";

                    "Token" = $Challenge.Token;

                    "TxtRecordName" = $txtRecordName;

                    "Content" = $content;

                }

            }

            "tls-alpn-01" {

                $content = [KeyAuthorization]::Compute($AccountKey, $Challenge.Token);

                $Challenge.Data =  [PSCustomObject]@{

                    "Type" = $Challenge.Type;

                    "Token" = $Challenge.Token;

                    "SubjectAlternativeName" = $Challenge.Identifier.Value;

                    "AcmeValidation-v1" = $content;

                }

            }

            Default {

                Write-Error "Cannot show how to resolve challange of unknown type $($Challenge.Type)"

            }

        }

        if($PassThru) {

            return $Challenge;

        }

    }

}