mirror of
https://github.com/dehydrated-io/dehydrated.git
synced 2026-07-02 19:21:39 +02:00
Renew private key by default, but keep option to disable this feature
This commit is contained in:
@@ -63,8 +63,8 @@
|
|||||||
# Minimum days before expiration to automatically renew certificate (default: 30)
|
# Minimum days before expiration to automatically renew certificate (default: 30)
|
||||||
#RENEW_DAYS="30"
|
#RENEW_DAYS="30"
|
||||||
|
|
||||||
# Regenerate private keys instead of just signing new certificates on renewal (default: no)
|
# Regenerate private keys instead of just signing new certificates on renewal (default: yes)
|
||||||
#PRIVATE_KEY_RENEW="no"
|
#PRIVATE_KEY_RENEW="yes"
|
||||||
|
|
||||||
# Which public key algorithm should be used? Supported: rsa, prime256v1 and secp384r1
|
# Which public key algorithm should be used? Supported: rsa, prime256v1 and secp384r1
|
||||||
#KEY_ALGO=rsa
|
#KEY_ALGO=rsa
|
||||||
|
|||||||
+1
-1
@@ -71,7 +71,7 @@ load_config() {
|
|||||||
ACCOUNT_KEY_JSON=
|
ACCOUNT_KEY_JSON=
|
||||||
KEYSIZE="4096"
|
KEYSIZE="4096"
|
||||||
WELLKNOWN=
|
WELLKNOWN=
|
||||||
PRIVATE_KEY_RENEW="no"
|
PRIVATE_KEY_RENEW="yes"
|
||||||
KEY_ALGO=rsa
|
KEY_ALGO=rsa
|
||||||
OPENSSL_CNF="$(openssl version -d | cut -d\" -f2)/openssl.cnf"
|
OPENSSL_CNF="$(openssl version -d | cut -d\" -f2)/openssl.cnf"
|
||||||
CONTACT_EMAIL=
|
CONTACT_EMAIL=
|
||||||
|
|||||||
Reference in New Issue
Block a user