Do not revalidate authorizations on forced renewal

This commit introduces a new cli argument `--force-validation` which,
when used in combination with `--force` ignores valid domain
authorizations and forces a revalidation.

This has been implemented since at least LE seems to have changed some
behavior on valid authorizations. Only the previously validated
authorization-type is reusable, causing dehydrated to error out when
changing from recently validated authorization types while still trying
to force-renew certificates for whatever reason (e.g. changing algorithms).
This commit is contained in:
Lukas Schauer
2020-12-12 03:01:47 +01:00
parent 29b67962ac
commit 316054ad1c
3 changed files with 20 additions and 4 deletions
+2 -1
View File
@@ -2,7 +2,8 @@
This file contains a log of major changes in dehydrated
## [x.x.x] - xxxx-xx-xx
No major changes yet.
## Changed
- `--force` no longer forces domain name revalidation by default, a new argument `--force-validation` has been added for that
## [0.7.0] - 2020-12-10
## Added