starred/certimate
1
0
Fork 0
mirror of https://github.com/certimate-go/certimate.git synced 2026-04-25 20:55:52 +03:00
Code Issues 52 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #715] [Feature] 支持Fastly CDN部署 #482

New issue
Open
opened 2026-03-03 01:03:41 +03:00 by kerem · 4 comments
kerem commented 2026-03-03 01:03:41 +03:00
Owner
Copy link

Originally created by @willow-god on GitHub (May 21, 2025).
Original GitHub issue: https://github.com/certimate-go/certimate/issues/715

功能描述 / Description

希望可以支持部署Fastly CDN,部署到证书夹中:

Image

请求动机 / Motivation

Fastly CDN是和CloudFlare一样的国外cdn,但是每个月有500GB流量,支持cname接入,优化后国内速度比Cloudflare更快,但是证书仅仅支持2个免费续签证书,后面就需要付费或者自己上传了,希望可以支持Fastly CDN证书的部署。

其他 / Miscellaneous

首先,我不清楚开发者您是否用过Fastly CDN,所以我找了一篇写的比较全面的使用教程供您参考:
https://blog.ihwx.cn/archives/1745499509105

对于API部分,有官网API如下:https://www.fastly.com/documentation/reference/api/tls/platform/

几乎所有的api都在如下地址中提供:https://www.fastly.com/documentation/reference/api/

为了让您能更加方便的查看,我还找到了一个接口文档:https://www.postman.com/fastly/fastly-developer-hub/request/uqqucdq/update-a-certificate

希望能够帮助到作者适配,感谢作者的贡献,很喜欢您的项目!

贡献 / Contribution

  • 我乐意为此贡献代码! / I am interested in contributing to this issue!
Originally created by @willow-god on GitHub (May 21, 2025). Original GitHub issue: https://github.com/certimate-go/certimate/issues/715 ### 功能描述 / Description 希望可以支持部署Fastly CDN,部署到证书夹中: ![Image](https://github.com/user-attachments/assets/70817d27-a16e-40ca-a91b-dcfb7d014fe5) ### 请求动机 / Motivation Fastly CDN是和CloudFlare一样的国外cdn,但是每个月有500GB流量,支持cname接入,优化后国内速度比Cloudflare更快,但是证书仅仅支持2个免费续签证书,后面就需要付费或者自己上传了,希望可以支持Fastly CDN证书的部署。 ### 其他 / Miscellaneous 首先,我不清楚开发者您是否用过Fastly CDN,所以我找了一篇写的比较全面的使用教程供您参考: https://blog.ihwx.cn/archives/1745499509105 对于API部分,有官网API如下:https://www.fastly.com/documentation/reference/api/tls/platform/ 几乎所有的api都在如下地址中提供:https://www.fastly.com/documentation/reference/api/ 为了让您能更加方便的查看,我还找到了一个接口文档:https://www.postman.com/fastly/fastly-developer-hub/request/uqqucdq/update-a-certificate 希望能够帮助到作者适配,感谢作者的贡献,很喜欢您的项目! ### 贡献 / Contribution - [ ] 我乐意为此贡献代码! / I am interested in contributing to this issue!
kerem commented 2026-03-03 01:03:41 +03:00
Author
Owner
Copy link

@fudiwei commented on GitHub (May 21, 2025):

已经给 Fastly 预留提供商类型很久了,迟迟没动手的原因是它的接口文档我没看明白…… 😂

为了让您能更加方便的查看,我还找到了一个接口文档:https://www.postman.com/fastly/fastly-developer-hub/request/uqqucdq/update-a-certificate

正常来说一个 SSL 证书是包含证书和私钥两部分的,但你贴的这个接口里,它只上传证书,私钥去哪儿了?

<!-- gh-comment-id:2897909348 --> @fudiwei commented on GitHub (May 21, 2025): 已经给 Fastly 预留提供商类型很久了,迟迟没动手的原因是它的接口文档我没看明白…… 😂 > 为了让您能更加方便的查看,我还找到了一个接口文档:https://www.postman.com/fastly/fastly-developer-hub/request/uqqucdq/update-a-certificate 正常来说一个 SSL 证书是包含证书和私钥两部分的,但你贴的这个接口里,它只上传证书,私钥去哪儿了?
kerem commented 2026-03-03 01:03:42 +03:00
Author
Owner
Copy link

@willow-god commented on GitHub (May 21, 2025):

您好开发者,感谢您的回复和开发,我查阅了一下资料,Fastly的密钥和证书是分开的,首先通过:
https://www.fastly.com/documentation/reference/api/tls/custom-certs/private-keys/
接口上传密钥,成功后,会得到一个密钥ID,然后再凭借这个密钥ID,上传证书,通过:
https://www.fastly.com/documentation/reference/api/tls/custom-certs/certificates/
接口,如果一切正常,则会获得一个certificate_id,然后再凭借这个ID,再找到一个证书和域名的绑定(fastly似乎是将绑定单独了一个页面),部署到某个域名中,完成所有的过程。

Image

控制台上传证书也是这个流程

<!-- gh-comment-id:2898041481 --> @willow-god commented on GitHub (May 21, 2025): 您好开发者,感谢您的回复和开发,我查阅了一下资料,Fastly的密钥和证书是分开的,首先通过: https://www.fastly.com/documentation/reference/api/tls/custom-certs/private-keys/ 接口上传密钥,成功后,会得到一个密钥ID,然后再凭借这个密钥ID,上传证书,通过: https://www.fastly.com/documentation/reference/api/tls/custom-certs/certificates/ 接口,如果一切正常,则会获得一个`certificate_id`,然后再凭借这个ID,再找到一个证书和域名的绑定(fastly似乎是将绑定单独了一个页面),部署到某个域名中,完成所有的过程。 ![Image](https://github.com/user-attachments/assets/7be1a141-3855-40a7-b9fa-e9453d87c566) 控制台上传证书也是这个流程
kerem commented 2026-03-03 01:03:42 +03:00
Author
Owner
Copy link

@fudiwei commented on GitHub (May 22, 2025):

您好开发者,感谢您的回复和开发,我查阅了一下资料,Fastly的密钥和证书是分开的,首先通过: https://www.fastly.com/documentation/reference/api/tls/custom-certs/private-keys/ 接口上传密钥,成功后,会得到一个密钥ID,然后再凭借这个密钥ID,上传证书,通过: https://www.fastly.com/documentation/reference/api/tls/custom-certs/certificates/ 接口,如果一切正常,则会获得一个certificate_id,然后再凭借这个ID,再找到一个证书和域名的绑定(fastly似乎是将绑定单独了一个页面),部署到某个域名中,完成所有的过程。

可上传证书的接口里并不需要传密钥 ID 😂 我就很好奇它俩咋关联在一起的?难道是 Fastly 分别从证书和私钥里提取出公钥,自动完成关联的?

<!-- gh-comment-id:2899796020 --> @fudiwei commented on GitHub (May 22, 2025): > 您好开发者,感谢您的回复和开发,我查阅了一下资料,Fastly的密钥和证书是分开的,首先通过: https://www.fastly.com/documentation/reference/api/tls/custom-certs/private-keys/ 接口上传密钥,成功后,会得到一个密钥ID,然后再凭借这个密钥ID,上传证书,通过: https://www.fastly.com/documentation/reference/api/tls/custom-certs/certificates/ 接口,如果一切正常,则会获得一个`certificate_id`,然后再凭借这个ID,再找到一个证书和域名的绑定(fastly似乎是将绑定单独了一个页面),部署到某个域名中,完成所有的过程。 可上传证书的接口里并不需要传密钥 ID 😂 我就很好奇它俩咋关联在一起的?难道是 Fastly 分别从证书和私钥里提取出公钥,自动完成关联的?
kerem commented 2026-03-03 01:03:42 +03:00
Author
Owner
Copy link

@willow-god commented on GitHub (May 22, 2025):

我这边本来尝试写个python脚本测试一下,但是他提示说需要绑定银行卡才能够使用证书这部分的api

{
  "errors": [
    {
      "title": "Can't create resource",
      "detail": "In order to perform this action, your account needs to be upgraded. Please add a credit 
card or reach out to support@fastly.com"
    }
  ]
}

所以不太清楚了,我搜索chatgpt他是说在请求中添加一个realtionships,如下:

"data": {
            "type": "tls_certificate",
            "attributes": {
                "cert_blob": cert_pem,
                "name": "My Certificate"
            },
            "relationships": {
                "tls_private_key": {
                    "data": {
                        "type": "tls_private_key",
                        "id": private_key_id
                    }
                }
            }
        }

如果您开通了的话可以试试,我这边没有海外信用卡可能没法开呜,无论如何还是感谢开发者啦!

<!-- gh-comment-id:2900204382 --> @willow-god commented on GitHub (May 22, 2025): 我这边本来尝试写个python脚本测试一下,但是他提示说需要绑定银行卡才能够使用证书这部分的api ```txt { "errors": [ { "title": "Can't create resource", "detail": "In order to perform this action, your account needs to be upgraded. Please add a credit card or reach out to support@fastly.com" } ] } ``` 所以不太清楚了,我搜索chatgpt他是说在请求中添加一个realtionships,如下: ```txt "data": { "type": "tls_certificate", "attributes": { "cert_blob": cert_pem, "name": "My Certificate" }, "relationships": { "tls_private_key": { "data": { "type": "tls_private_key", "id": private_key_id } } } } ``` 如果您开通了的话可以试试,我这边没有海外信用卡可能没法开呜,无论如何还是感谢开发者啦!
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
next
archive/v0.3
archive/v0.2
v0.4.21
v0.4.20
v0.4.19
v0.4.18
v0.4.17
v0.4.16
v0.4.15
v0.4.14
v0.4.13
v0.4.12
v0.4.11
v0.4.10
v0.4.9
v0.4.8
v0.4.7
v0.4.6
v0.4.5
v0.4.4
v0.4.3
v0.4.2
v0.4.1
v0.4.0
v0.3.27
v0.3.26
v0.3.25
v0.3.24
v0.3.23
v0.3.22
v0.3.21
v0.3.20
v0.3.19
v0.3.18
v0.3.17
v0.3.16
v0.3.15
v0.3.14
v0.3.13
v0.3.12
v0.3.11
v0.3.10
v0.3.9
v0.3.8
v0.3.7
v0.3.6
v0.3.5
v0.3.4
v0.3.3
v0.3.2
v0.3.1
v0.3.0
v0.2.24-beta
v0.2.23-beta
v0.2.21
v0.2.20
v0.2.19
v0.2.18
v0.2.17
v0.2.16
v0.2.15
v0.2.14
v0.2.13
v0.2.12
v0.2.11
v0.2.10
v0.2.9
v0.2.8
v0.2.7
v0.2.6
v0.2.5
v0.2.4
v0.2.3
v0.2.2
v0.2.1
v0.2.0
v0.1.19
v0.1.18
v0.1.17
v0.1.16
v0.1.15
v0.1.14
v0.1.13
v0.1.12
v0.1.11
v0.1.10
v0.1.9
v0.1.8
v0.1.7
v0.1.6
v0.1.5
v0.1.4
v0.1.3
v0.1.2
v0.1.1
v0.1.0
v0.0.1
Labels
Clear labels   
announcement

   
backlog

   
bug

   
declined

   
documentation

   
duplicate

   
enhancement

   
good first issue

   
good first issue

   
help wanted

   
invalid

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
stale
No labels
announcement
backlog
bug
declined
documentation
duplicate
enhancement
good first issue
good first issue
help wanted
invalid
pull-request
question
stale
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/certimate#482
No description provided.