poll every 30 seconds SSL and DNS verification states

Author: Soxasora

api/acm/index.js

@@ -16,6 +16,7 @@ export async function requestCertificate (domain) {
     config.endpoint = process.env.LOCALSTACK_ENDPOINT
   }
 
+  // TODO: Research real values
   const acm = new AWS.ACM(config)
   const params = {
     DomainName: domain,

api/resolvers/sub.js

@@ -150,6 +150,9 @@ export default {
         cursor: subs.length === limit ? nextCursorEncoded(decodedCursor, limit) : null,
         subs
       }
+    },
+    customDomain: async (parent, { subName }, { models }) => {
+      return models.customDomain.findUnique({ where: { subName } })
     }
   },
   Mutation: {

api/typeDefs/sub.js

@@ -7,6 +7,7 @@ export default gql`
     subs: [Sub!]!
     topSubs(cursor: String, when: String, from: String, to: String, by: String, limit: Limit): Subs
     userSubs(name: String!, cursor: String, when: String, from: String, to: String, by: String, limit: Limit): Subs
+    customDomain(subName: String!): CustomDomain
   }
 
   type CustomDomain {

components/territory-domains.js

@@ -1,9 +1,10 @@
 import { Badge } from 'react-bootstrap'
 import { Form, Input, SubmitButton } from './form'
-import { gql, useMutation } from '@apollo/client'
+import { gql, useMutation, useQuery } from '@apollo/client'
 import { customDomainSchema } from '@/lib/validate'
 import ActionTooltip from './action-tooltip'
 import { useToast } from '@/components/toast'
+import { NORMAL_POLL_INTERVAL, SSR } from '@/lib/constants'
 
 const SET_CUSTOM_DOMAIN = gql`
   mutation SetCustomDomain($subName: String!, $domain: String!) {
@@ -15,11 +16,38 @@ const SET_CUSTOM_DOMAIN = gql`
   }
 `
 
-// TODO: verification states should refresh
+const GET_CUSTOM_DOMAIN = gql`
+  query CustomDomain($subName: String!) {
+    customDomain(subName: $subName) {
+      domain
+      dnsState
+      sslState
+      verificationCname
+      verificationCnameValue
+      verificationTxt
+      lastVerifiedAt
+    }
+  }
+`
+
+// TODO: clean this up
 export default function CustomDomainForm ({ sub }) {
   const [setCustomDomain] = useMutation(SET_CUSTOM_DOMAIN, {
     refetchQueries: ['Sub']
   })
+  const { data, stopPolling } = useQuery(GET_CUSTOM_DOMAIN, SSR
+    ? {}
+    : {
+        variables: { subName: sub.name },
+        pollInterval: NORMAL_POLL_INTERVAL,
+        skip: !sub || !sub.customDomain,
+        onCompleted: (data) => {
+          if (data?.customDomain?.sslState === 'VERIFIED' &&
+              data?.customDomain?.dnsState === 'VERIFIED') {
+            stopPolling()
+          }
+        }
+      })
   const toaster = useToast()
 
   const onSubmit = async ({ domain }) => {
@@ -57,7 +85,7 @@ export default function CustomDomainForm ({ sub }) {
   return (
     <Form
       initial={{
-        domain: sub?.customDomain?.domain || ''
+        domain: sub.customDomain?.domain || ''
       }}
       schema={customDomainSchema}
       onSubmit={onSubmit}
@@ -69,13 +97,13 @@ export default function CustomDomainForm ({ sub }) {
           label={
             <div className='d-flex align-items-center gap-2'>
               <span>custom domain</span>
-              {sub?.customDomain && (
+              {data?.customDomain && (
                 <>
                   <div className='d-flex align-items-center gap-2'>
-                    <ActionTooltip overlayText={new Date(sub.customDomain.lastVerifiedAt).toUTCString()}>
-                      {getStatusBadge(sub.customDomain.dnsState)}
+                    <ActionTooltip overlayText={new Date(data?.customDomain.lastVerifiedAt).toUTCString()}>
+                      {getStatusBadge(data?.customDomain.dnsState)}
                     </ActionTooltip>
-                    {getSSLStatusBadge(sub.customDomain.sslState)}
+                    {getSSLStatusBadge(data?.customDomain.sslState)}
                   </div>
                 </>
               )}
@@ -87,7 +115,7 @@ export default function CustomDomainForm ({ sub }) {
         {/* TODO: toaster */}
         <SubmitButton variant='primary' className='mt-3'>save</SubmitButton>
       </div>
-      {(sub.customDomain.dnsState === 'PENDING' || sub.customDomain.dnsState === 'FAILED') && (
+      {(data?.customDomain.dnsState === 'PENDING' || data?.customDomain.dnsState === 'FAILED') && (
         <>
           <h6>Verify your domain</h6>
           <p>Add the following DNS records to verify ownership of your domain:</p>
@@ -99,23 +127,18 @@ export default function CustomDomainForm ({ sub }) {
           <pre>
             TXT:
             Host: @
-            Value: ${sub.customDomain.verificationTxt}
+            Value: ${data?.customDomain.verificationTxt}
           </pre>
         </>
       )}
-      {sub.customDomain.sslState === 'PENDING' && (
+      {data?.customDomain.sslState === 'PENDING' && (
         <>
           <h6>SSL verification pending</h6>
-          <p>We issued an SSL certificate for your domain.</p>
+          <p>We issued an SSL certificate for your domain. To validate it, add the following CNAME record:</p>
           <pre>
             CNAME:
-            Host: ${sub.customDomain.verificationCname}
-            Value: ${sub.customDomain.verificationCnameValue}
-          </pre>
-          <pre>
-            TXT:
-            Host: @
-            Value: ${sub.customDomain.verificationTxt}
+            Host: ${data?.customDomain.verificationCname}
+            Value: ${data?.customDomain.verificationCnameValue}
           </pre>
         </>
       )}

components/territory-form.js

@@ -288,23 +288,24 @@ export default function TerritoryForm ({ sub }) {
           />
         </div>
       </Form>
-      <div className='w-100'>
-        <AccordianItem
-          header={<div style={{ fontWeight: 'bold', fontSize: '92%' }}>advanced</div>}
-          body={
-            <>
-              <TerritoryDomains sub={sub} />
-              {sub?.customDomain?.dnsState === 'VERIFIED' && sub?.customDomain?.sslState === 'VERIFIED' &&
-                <>
-                  <BootstrapForm.Label>[NOT IMPLEMENTED] branding</BootstrapForm.Label>
-                  <div className='mb-3'>WIP</div>
-                  <BootstrapForm.Label>[NOT IMPLEMENTED] color scheme</BootstrapForm.Label>
-                  <div className='mb-3'>WIP</div>
-                </>}
-            </>
-          }
-        />
-      </div>
+      {sub &&
+        <div className='w-100'>
+          <AccordianItem
+            header={<div style={{ fontWeight: 'bold', fontSize: '92%' }}>advanced</div>}
+            body={
+              <>
+                <TerritoryDomains sub={sub} />
+                {sub?.customDomain?.dnsState === 'VERIFIED' && sub?.customDomain?.sslState === 'VERIFIED' &&
+                  <>
+                    <BootstrapForm.Label>[NOT IMPLEMENTED] branding</BootstrapForm.Label>
+                    <div className='mb-3'>WIP</div>
+                    <BootstrapForm.Label>[NOT IMPLEMENTED] color scheme</BootstrapForm.Label>
+                    <div className='mb-3'>WIP</div>
+                  </>}
+              </>
+            }
+          />
+        </div>}
     </FeeButtonProvider>
   )
 }

lib/domains.js

@@ -55,7 +55,7 @@ export async function getValidationValues (certificateArn) {
   }
 }
 
-export async function verifyDomainDNS (domainName, verificationTxt, cname = 'stacker.news') {
+export async function verifyDomainDNS (domainName, verificationTxt, cname = 'parallel.soxa.dev') {
   const result = {
     txtValid: false,
     cnameValid: false,

worker/domainVerification.js

@@ -6,32 +6,32 @@ export async function domainVerification () {
   const models = createPrisma({ connectionParams: { connection_limit: 1 } })
 
   try {
-    const domains = await models.customDomain.findMany({ where: { OR: [{ dnsState: 'PENDING' }, { sslState: 'PENDING' }] } })
+    const domains = await models.customDomain.findMany({ where: { NOT: { AND: [{ dnsState: 'VERIFIED' }, { sslState: 'VERIFIED' }] } } })
 
     for (const domain of domains) {
       try {
         const data = { ...domain, lastVerifiedAt: new Date() }
         // DNS verification
         if (data.dnsState === 'PENDING' || data.dnsState === 'FAILED') {
-          const { txtValid, cnameValid } = await verifyDomainDNS(domain.name, domain.verificationTxt)
-          console.log(`${domain.name}: TXT ${txtValid ? 'valid' : 'invalid'}, CNAME ${cnameValid ? 'valid' : 'invalid'}`)
+          const { txtValid, cnameValid } = await verifyDomainDNS(data.domain, domain.verificationTxt)
+          console.log(`${data.domain}: TXT ${txtValid ? 'valid' : 'invalid'}, CNAME ${cnameValid ? 'valid' : 'invalid'}`)
           data.dnsState = txtValid && cnameValid ? 'VERIFIED' : 'FAILED'
         }
 
         // SSL issuing
         if (data.dnsState === 'VERIFIED' && (!data.certificateArn || data.sslState === 'FAILED')) {
-          const certificateArn = await issueDomainCertificate(domain.name)
-          console.log(`${domain.name}: Certificate issued: ${certificateArn}`)
+          const certificateArn = await issueDomainCertificate(data.domain)
+          console.log(`${data.domain}: Certificate issued: ${certificateArn}`)
           if (certificateArn) {
             const sslState = await checkCertificateStatus(certificateArn)
-            console.log(`${domain.name}: Issued certificate status: ${sslState}`)
+            console.log(`${data.domain}: Issued certificate status: ${sslState}`)
             if (sslState === 'PENDING') {
               try {
                 const { cname, value } = await getValidationValues(certificateArn)
                 data.verificationCname = cname
                 data.verificationCnameValue = value
               } catch (error) {
-                console.error(`Failed to get validation values for domain ${domain.name}:`, error)
+                console.error(`Failed to get validation values for domain ${data.domain}:`, error)
               }
             }
             if (sslState) data.sslState = sslState
@@ -44,14 +44,14 @@ export async function domainVerification () {
         // SSL checking
         if (data.dnsState === 'VERIFIED' && data.sslState === 'PENDING') {
           const sslState = await checkCertificateStatus(data.certificateArn)
-          console.log(`${domain.name}: Certificate status: ${sslState}`)
+          console.log(`${data.domain}: Certificate status: ${sslState}`)
           if (sslState) data.sslState = sslState
         }
 
         await models.customDomain.update({ where: { id: domain.id }, data })
       } catch (error) {
         // TODO: this declares any error as a DNS verification error, we should also consider SSL verification errors
-        console.error(`Failed to verify domain ${domain.name}:`, error)
+        console.error(`Failed to verify domain ${domain.domain}:`, error)
 
         // TODO: DNS inconcistencies can happen, we should retry at least 3 times before marking it as FAILED
         // Update to FAILED on any error