use Control.Error

author: Andrew Cady <d@jerkface.net> 2016-01-26 03:17:47 -0500
committer: Andrew Cady <d@jerkface.net> 2016-01-26 14:11:41 -0500
commit: 7373a3ede2216048d2766f8f27e77d014b82dc43 (patch)
tree: 73ce059e25e0131e7d6f8363338a9a19f8532ef4
parent: d54ff778995b369ead6b708d9b6ee8bff31d366d (diff)
2 files changed, 19 insertions, 16 deletions
diff --git a/acme-certify.cabal b/acme-certify.cabal
index 60bf41a..b9e9818 100644
--- a/acme-certify.cabal
+++ b/acme-certify.cabal
@@ -17,7 +17,7 @@ library
  build-depends:       base >= 4.7 && < 5,
                       cryptonite, aeson, bytestring, base64-bytestring, SHA,
                       mtl, text, HsOpenSSL, wreq, lens, lens-aeson, time,
-                       email-validate, pipes, directory, network-uri
+                       email-validate, pipes, directory, network-uri, errors
  default-language:    Haskell2010
 executable acme-certify
diff --git a/src/Network/ACME.hs b/src/Network/ACME.hs
index b05b823..e08d5b9 100644
--- a/src/Network/ACME.hs
+++ b/src/Network/ACME.hs
@@ -41,6 +41,8 @@ import           OpenSSL.RSA
 import           OpenSSL.X509.Request
 import           OpenSSL.X509 (readDerX509, X509)
 import Data.List
+import Control.Error
+import Control.Arrow
 type HttpProvisioner = URI -> ByteString -> IO ()
@@ -73,23 +75,24 @@ acmeChallengeURI dom tok = URI
                             ""
 certify :: URI -> Keys -> Maybe (URI, EmailAddress) -> HttpProvisioner -> CSR -> IO (Either String X509)
-certify directoryUrl keys reg provision certReq = run >>= traverse readDerX509
+certify directoryUrl keys reg provision certReq =
-  where
+  (mapM readDerX509 =<<) $ runACME directoryUrl keys $ do
-    run =
-      runACME directoryUrl keys $ do
+    forM_ reg $ uncurry register >=> statusReport
-        forM_ reg $ uncurry register >=> statusReport
-        let performChallenge domain (ChallengeRequest nextUri token thumbtoken) = do
+    let performChallenge domain (ChallengeRequest nextUri token thumbtoken) = do
-              liftIO $ provision (acmeChallengeURI domain token) thumbtoken
+          liftIO $ provision (acmeChallengeURI domain token) thumbtoken
-              notifyChallenge nextUri thumbtoken >>= statusReport >>= ncErrorReport
+          notifyChallenge nextUri thumbtoken >>= statusReport >>= ncErrorReport
-        challengeResultLinks <- forM (csrDomains certReq) $ \dom ->
+    challengeResultLinks <- forM (csrDomains certReq) $ \dom -> challengeRequest dom >>=
-          challengeRequest dom >>= statusReport >>= extractCR >>= performChallenge dom
+                                                                statusReport >>=
+                                                                extractCR >>=
+                                                                performChallenge dom
-        pollResults challengeResultLinks >>=
+    runExceptT $ do
-          either (return . Left . ("certificate receipt was not attempted because a challenge failed: " ++))
+      ExceptT $ pollResults challengeResultLinks <&> left ("certificate receipt was not attempted because a challenge failed: " ++)
-                 (const (retrieveCert certReq >>= statusReport <&> checkCertResponse))
+      ExceptT $ retrieveCert certReq >>= statusReport <&> checkCertResponse
 pollResults :: [Response LC.ByteString] -> ACME (Either String ())
 pollResults [] = return $ Right ()
@@ -111,9 +114,9 @@ data CSR = CSR { csrDomains :: [DomainName], csrData :: ByteString }
 newtype WritableDir = WritableDir String
 ensureWritableDir :: FilePath -> String -> IO WritableDir
 ensureWritableDir file name = do
-  (writable <$> getPermissions file) >>= flip unless (err name)
+  (writable <$> getPermissions file) >>= flip unless (e name)
  return $ WritableDir file
-  where err n = error $ "Error: " ++ n ++ " is not writable"
+  where e n = error $ "Error: " ++ n ++ " is not writable"
 (</>) :: String -> String -> String
 a </> b = a ++ "/" ++ b
author	Andrew Cady <d@jerkface.net>	2016-01-26 03:17:47 -0500
committer	Andrew Cady <d@jerkface.net>	2016-01-26 14:11:41 -0500
commit	7373a3ede2216048d2766f8f27e77d014b82dc43 (patch)
tree	73ce059e25e0131e7d6f8363338a9a19f8532ef4
parent	d54ff778995b369ead6b708d9b6ee8bff31d366d (diff)

diff --git a/acme-certify.cabal b/acme-certify.cabal index 60bf41a..b9e9818 100644 --- a/acme-certify.cabal +++ b/acme-certify.cabal
@@ -17,7 +17,7 @@ library
17	build-depends: base >= 4.7 && < 5,	17	build-depends: base >= 4.7 && < 5,
18	cryptonite, aeson, bytestring, base64-bytestring, SHA,	18	cryptonite, aeson, bytestring, base64-bytestring, SHA,
19	mtl, text, HsOpenSSL, wreq, lens, lens-aeson, time,	19	mtl, text, HsOpenSSL, wreq, lens, lens-aeson, time,
20	email-validate, pipes, directory, network-uri	20	email-validate, pipes, directory, network-uri, errors
21	default-language: Haskell2010	21	default-language: Haskell2010
22		22
23	executable acme-certify	23	executable acme-certify


diff --git a/src/Network/ACME.hs b/src/Network/ACME.hs index b05b823..e08d5b9 100644 --- a/src/Network/ACME.hs +++ b/src/Network/ACME.hs
@@ -41,6 +41,8 @@ import OpenSSL.RSA
41	import OpenSSL.X509.Request	41	import OpenSSL.X509.Request
42	import OpenSSL.X509 (readDerX509, X509)	42	import OpenSSL.X509 (readDerX509, X509)
43	import Data.List	43	import Data.List
		44	import Control.Error
		45	import Control.Arrow
44		46
45	type HttpProvisioner = URI -> ByteString -> IO ()	47	type HttpProvisioner = URI -> ByteString -> IO ()
46		48
@@ -73,23 +75,24 @@ acmeChallengeURI dom tok = URI
73	""	75	""
74		76
75	certify :: URI -> Keys -> Maybe (URI, EmailAddress) -> HttpProvisioner -> CSR -> IO (Either String X509)	77	certify :: URI -> Keys -> Maybe (URI, EmailAddress) -> HttpProvisioner -> CSR -> IO (Either String X509)
76	certify directoryUrl keys reg provision certReq = run >>= traverse readDerX509	78	certify directoryUrl keys reg provision certReq =
77		79
78	where	80	(mapM readDerX509 =<<) $ runACME directoryUrl keys $ do
79	run =	81
80	runACME directoryUrl keys $ do	82	forM_ reg $ uncurry register >=> statusReport
81	forM_ reg $ uncurry register >=> statusReport
82		83
83	let performChallenge domain (ChallengeRequest nextUri token thumbtoken) = do	84	let performChallenge domain (ChallengeRequest nextUri token thumbtoken) = do
84	liftIO $ provision (acmeChallengeURI domain token) thumbtoken	85	liftIO $ provision (acmeChallengeURI domain token) thumbtoken
85	notifyChallenge nextUri thumbtoken >>= statusReport >>= ncErrorReport	86	notifyChallenge nextUri thumbtoken >>= statusReport >>= ncErrorReport
86		87
87	challengeResultLinks <- forM (csrDomains certReq) $ \dom ->	88	challengeResultLinks <- forM (csrDomains certReq) $ \dom -> challengeRequest dom >>=
88	challengeRequest dom >>= statusReport >>= extractCR >>= performChallenge dom	89	statusReport >>=
		90	extractCR >>=
		91	performChallenge dom
89		92
90	pollResults challengeResultLinks >>=	93	runExceptT $ do
91	either (return . Left . ("certificate receipt was not attempted because a challenge failed: " ++))	94	ExceptT $ pollResults challengeResultLinks <&> left ("certificate receipt was not attempted because a challenge failed: " ++)
92	(const (retrieveCert certReq >>= statusReport <&> checkCertResponse))	95	ExceptT $ retrieveCert certReq >>= statusReport <&> checkCertResponse
93		96
94	pollResults :: [Response LC.ByteString] -> ACME (Either String ())	97	pollResults :: [Response LC.ByteString] -> ACME (Either String ())
95	pollResults [] = return $ Right ()	98	pollResults [] = return $ Right ()
@@ -111,9 +114,9 @@ data CSR = CSR { csrDomains :: [DomainName], csrData :: ByteString }
111	newtype WritableDir = WritableDir String	114	newtype WritableDir = WritableDir String
112	ensureWritableDir :: FilePath -> String -> IO WritableDir	115	ensureWritableDir :: FilePath -> String -> IO WritableDir
113	ensureWritableDir file name = do	116	ensureWritableDir file name = do
114	(writable <$> getPermissions file) >>= flip unless (err name)	117	(writable <$> getPermissions file) >>= flip unless (e name)
115	return $ WritableDir file	118	return $ WritableDir file
116	where err n = error $ "Error: " ++ n ++ " is not writable"	119	where e n = error $ "Error: " ++ n ++ " is not writable"
117		120
118	(</>) :: String -> String -> String	121	(</>) :: String -> String -> String
119	a </> b = a ++ "/" ++ b	122	a </> b = a ++ "/" ++ b