From 4dd2b67738e31c5b6dd0663d3de17d689c813e7a Mon Sep 17 00:00:00 2001
From: mahesh bhatiya <maheshbhatiya304@gmail.com>
Date: Fri, 27 Jun 2025 22:41:47 +0530
Subject: [PATCH] feat(cli): add disable-ssl command to remove domain SSL
 certificates

- Introduced `disable-ssl` command for removing Let's Encrypt SSL certificates from a domain
- Automatically detects the web server type (Apache, Nginx, or Caddy)
- Skips manual SSL removal for Caddy (since it handles SSL automatically)
- Executes `certbot delete --cert-name <domain>` for Apache/Nginx configurations
- Reuses shared utility `DetectServerType` and internal RunCommand pattern
- Includes validation and user-friendly terminal logging for better UX
---
 cmd/disable_ssl.go | 58 ++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 58 insertions(+)
 create mode 100644 cmd/disable_ssl.go

diff --git a/cmd/disable_ssl.go b/cmd/disable_ssl.go
new file mode 100644
index 0000000..07b093b
--- /dev/null
+++ b/cmd/disable_ssl.go
@@ -0,0 +1,58 @@
+package cmd
+
+import (
+	"fmt"
+	"os"
+
+	"github.com/spf13/cobra"
+	"stackroost/internal"
+	"stackroost/internal/logger"
+)
+
+var disableSSLCmd = &cobra.Command{
+	Use:   "disable-ssl",
+	Short: "Disable and remove SSL certificate for a specific domain",
+	Run: func(cmd *cobra.Command, args []string) {
+		domain, _ := cmd.Flags().GetString("domain")
+		if internal.IsNilOrEmpty(domain) {
+			logger.Error("Please provide a domain using --domain")
+			os.Exit(1)
+		}
+
+		serverType := internal.DetectServerType(domain)
+		if serverType == "" {
+			logger.Error(fmt.Sprintf("Could not detect server type for domain: %s", domain))
+			os.Exit(1)
+		}
+
+		if serverType == "caddy" {
+			logger.Info("Caddy auto-manages SSL — no need to disable manually.")
+			return
+		}
+
+		logger.Info(fmt.Sprintf("Detected %s configuration for %s", serverType, domain))
+		logger.Info("Removing SSL certificate using Certbot")
+
+		cmdArgs := []string{
+			"delete",
+			"--cert-name", domain,
+			"--non-interactive",
+			"--quiet",
+			"--agree-tos",
+		}
+
+		err := internal.RunCommand("sudo", append([]string{"certbot"}, cmdArgs...)...)
+		if err != nil {
+			logger.Warn(fmt.Sprintf("Certbot failed to delete certificate: %v", err))
+			os.Exit(1)
+		}
+
+		logger.Success(fmt.Sprintf("SSL certificate removed for %s", domain))
+	},
+}
+
+func init() {
+	rootCmd.AddCommand(disableSSLCmd)
+	disableSSLCmd.Flags().String("domain", "", "Domain name to disable SSL for")
+	disableSSLCmd.MarkFlagRequired("domain")
+}