server-ssl.js

make some changes to checkChallengesMixin

only create the jwkThumbPrint once

/root
│
├── /error
│   ├── 404.html
│   └── 500.html
│
├── /ssl
│   ├── /openssl
│   ├── /module
│   │   ├── /crypt
│   │   ├── /jose
│   │   └── lets-encrypt-acme-client.js
│   │
│   ├── acmeKeys
│   ├── private-key.pem
│   └── certificate.pem
│   └── ssl.js
│
├── /website
│   └── index.html <---- Your website goes here
│
├── node.exe
├── server-ssl.js            <--- server config
└── start-windows.bat

Author: FirstTimeEZ

README.md

@@ -34,10 +34,10 @@ It can be as simple as this:
 ./start-windows.bat --cert="your-certificate.pem" --pk="your-private-key.pem"
 ```
 
-[![](https://i.imgur.com/NxJQeLm.gif)](https://github.com/FirstTimeEZ/server-ssl/archive/refs/heads/main.zip)
-
 [![](https://i.imgur.com/HuaQTrJ.png)](https://github.com/FirstTimeEZ/server-ssl/archive/refs/heads/main.zip)
 
+[![](https://i.imgur.com/NxJQeLm.gif)](https://github.com/FirstTimeEZ/server-ssl/archive/refs/heads/main.zip)
+
 ### Optional Arguments
 
 `server-ssl.js` has some optional arguments you can use in production if the defaults aren't enough.

ssl/module/lets-encrypt-acme-client.js

@@ -73,13 +73,13 @@ let localHost = false;
 let checkedForLocalHost = false;
 
 let jsonWebKey = undefined;
+let jsonWebKeyThumbPrint = null;
+
 let acmeDirectory = DIRECTORY_PRODUCTION;
 
 let attemptWhen = null;
 let startedWhen = null;
 
-let jwkThumbPrint = null;
-
 /**
  * Starts the Let's Encrypt daemon to manage SSL certificates.
  *
@@ -290,7 +290,7 @@ export async function startLetsEncryptDaemon(fqdns, sslPath, daysRemaining, cert
  * createServerHTTP((req, res) => { if (checkChallengesMixin(req, res)) { return; } }).listen(80);
  */
 export async function checkChallengesMixin(req, res) {
-    if (pendingChallenges.length === 0 || localHost === true || jwkThumbPrint == undefined || internalCheckChallenges()) {
+    if (pendingChallenges.length === 0 || localHost === true || jsonWebKeyThumbPrint == undefined || internalCheckChallenges()) {
         return false;
     }
 
@@ -315,7 +315,7 @@ export async function checkChallengesMixin(req, res) {
                             console.log(ACME_CHALLENGE, challenge.token);
 
                             res.writeHead(SUCCESS, { [CONTENT_TYPE]: CONTENT_TYPE_OCTET });
-                            res.end(Buffer.from(`${challenge.token}.${jwkThumbPrint}`));
+                            res.end(Buffer.from(`${challenge.token}.${jsonWebKeyThumbPrint}`));
 
                             bufferModified = true;
 
@@ -369,7 +369,7 @@ async function newNonceAsync(newNonceUrl) {
 async function createAccount(nonce, newAccountUrl, keyChain) {
     try {
         jsonWebKey = await jose.exportJWK(keyChain.publicKey);
-        jwkThumbPrint = await jose.calculateJwkThumbprint(jsonWebKey, DIGEST);
+        jsonWebKeyThumbPrint = await jose.calculateJwkThumbprint(jsonWebKey, DIGEST);
 
         const payload = { termsOfServiceAgreed: true };