From a6ea72ad11bac841afae5e239e02c86621427b6d Mon Sep 17 00:00:00 2001
From: Puppet Letsencrypt <>
Date: Fri, 6 Jan 2023 23:13:08 +0100
Subject: Import other projects fact.

---
 lib/facter/letsencrypt_directory.rb | 33 +++++++++++++++++++++++++++++++++
 1 file changed, 33 insertions(+)
 create mode 100644 lib/facter/letsencrypt_directory.rb

(limited to 'lib')

diff --git a/lib/facter/letsencrypt_directory.rb b/lib/facter/letsencrypt_directory.rb
new file mode 100644
index 0000000..d21bb1c
--- /dev/null
+++ b/lib/facter/letsencrypt_directory.rb
@@ -0,0 +1,33 @@
+# frozen_string_literal: true
+
+# Borrowed from puppet-letsencrypt
+
+require 'openssl'
+require 'pathname'
+
+Facter.add(:letsencrypt_directory) do
+  confine kernel: %w[FreeBSD Linux OpenBSD]
+
+  setcode do
+    certs = {}
+
+    # locate the certificate repository
+    livedir = ['/etc/letsencrypt/live', '/etc/certbot/live'].
+              map { |path| Pathname.new path }.
+              find(&:directory?)
+
+    unless livedir.nil?
+      Pathname.new(livedir).children.select(&:directory?).each do |path|
+        pem = File.join(path, 'cert.pem')
+        cert = OpenSSL::X509::Certificate.new(File.new(pem).read)
+        san = cert.extensions.find { |e| e.oid == 'subjectAltName' }
+        names = san.value.split(',').map { |entry| entry.split(':')[1] }
+        names.each do |n|
+          certs[n] = path.to_s
+        end
+      end
+    end
+
+    certs
+  end
+end
-- 
cgit v1.2.3