Commit Graph

417 Commits

Author SHA1 Message Date
typingArtist 3116fe0c8c Dictate certdir to sign_domain by command_sign_domains
Now the first parameter is the certificate output directory. This is
dictated by command_sign_domains as a single point of authority.
Also in sign_domain and command_sign_domains, the variables have been
rephrased to idicate that the first domain is only the primary, which
is put into the CN field, being part of alldomains. The primary still
indicates the configuration file in DOMAINS_D and the output directory.
2017-06-08 09:01:31 +02:00
typingArtist cd03e2a8d7 396 replace ${CERTDIR}/${domain} with ${certdir} everywhere
• improves readability
• allows ${certdir} to be changed independent from ${domain} more easily
2017-06-08 07:38:28 +02:00
Lukas Schauer 116386486b release 0.4.0 v0.4.0 2017-02-05 15:33:17 +01:00
Lukas Schauer aed4272e97 improved register command (closes #350) 2017-02-05 15:32:29 +01:00
Lukas Schauer ad21b41e27 also test under osx 2017-02-04 13:54:22 +01:00
Lukas Schauer 3d8d320c9f trying to fix compatibility with mawk 2017-02-04 13:32:56 +01:00
Lukas Schauer 449490a981 Merge branch 'simondeziel-fix-example-hook' 2017-01-31 02:58:29 +01:00
Simon Deziel fe17753dd5 Invoke bash through /usr/bin/env 2017-01-30 20:47:23 -05:00
Simon Deziel 27a416511f The example hook script uses bash test regex
Use bash explictly as done for the main script.

Signed-off-by: Simon Deziel <simon.deziel@gmail.com>
2017-01-30 20:36:19 -05:00
Lukas Schauer e5452922e9 whitelist handlers for example hook (fixes #348) 2017-01-30 03:53:59 +01:00
Lukas Schauer ee65261ea8 exclude root certificate from certificate chain 2017-01-30 03:45:21 +01:00
Lukas Schauer 03f0dc18b9 use awk instead of grep for reading trailing line after match (fixes #255) 2017-01-30 00:12:01 +01:00
Lukas Schauer 197ca8e82c Revert "curl: use custom user agent"
This reverts commit a5fde931f8.
2017-01-29 22:56:42 +01:00
Lukas Schauer a5fde931f8 curl: use custom user agent 2017-01-29 22:42:02 +01:00
Lukas Schauer 6a32f20e00 ask user to read and accept license, added register-command, fullchain.pem is now actually the full chain 2017-01-29 22:06:53 +01:00
Lukas Schauer b2376ed437 updated changelog 2017-01-29 16:06:24 +01:00
Lukas Schauer 57197306d7 export some config variables for use within hook scripts 2017-01-29 16:03:59 +01:00
Lukas Schauer 298a7e9aaf added exit_hook hook 2017-01-29 15:48:03 +01:00
Lukas Schauer 0f299623be updated changelog 2017-01-29 14:33:41 +01:00
Lukas Schauer cfc00c42a2 check for diff using command 2017-01-29 14:04:43 +01:00
Lukas Schauer 5d92c3b352 use awk instead of tr for changing case 2017-01-29 14:00:45 +01:00
Lukas Schauer e2e2c362d2 check for mktemp using command (busybox compatibility) 2017-01-29 13:58:42 +01:00
Lukas Schauer b36d638a91 missing filename in config path 2017-01-06 00:40:03 +01:00
Lukas Schauer 84274f7436 moved and rewritten config section of readme 2017-01-06 00:38:13 +01:00
Maximilian Weber c2a735f99e Update Readme.md (#301)
Add config section
2017-01-06 00:32:53 +01:00
Lukas Schauer de36a63fe6 removed note about project renaming 2017-01-06 00:31:03 +01:00
Nicolás Kovac 81eecedc5a Fix: bash to sh notation on invalid_challenge() hook 2017-01-06 00:18:57 +01:00
nkovacne 404dc3fe0f Adding the request_failure hook (#326) 2017-01-06 00:15:51 +01:00
Lukas Schauer 3c1d2673d1 trying to fix #320 again 2016-12-22 22:56:50 +01:00
Lukas Schauer 69eea9527f removed some spaces 2016-12-22 10:00:05 +01:00
Aaron Roydhouse 636fa1a559 Test for case when challenge_altnames is empty (#321)
When all names in a cert have already been validated, the challenge_altnames array will be empty, causes an error in later code. This patch adds a test to handle that case.
2016-12-22 09:58:48 +01:00
Lukas Schauer 7f30826a6d removed temporary wrapper script 2016-12-19 01:21:43 +01:00
nkovacne 318cf2011d Adding the invalid_challenge hook (#278) 2016-12-18 20:31:08 +01:00
Eihrister 8456855e48 Add new parameter --lock-suffix. (#287)
* Add new parameter --lock-suffix.

This enables automation systems to run multiple instances of dehydrated
while still maintaining a locking facility. This is necessary for
projects like https://github.com/GUI/lua-resty-auto-ssl.

With this feature, one could run the script multiple times, while still
having a form of locking:

./dehydrated --lock-suffix test1.example.com -d test1.example.com
./dehydrated --lock-suffix test2.example.com -d test2.example.com
./dehydrated --lock-suffix test3.example.com -d test3.example.com
./dehydrated --lock-suffix test4.example.com -d test4.example.com
./dehydrated --lock-suffix test5.example.com -d test5.example.com

When starts the script with the same locking suffix, the scripts exits
like it normally would when locked. This will give you the benefits of
using --no-lock, without the disadvantages of it.

* Fixed unbound variable error for new PARAM_LOCKFILE_SUFFIX.
2016-12-18 20:25:49 +01:00
sth 9729751d93 Skip challenge for already validated domains (#293)
* skip challenge for already validated domains

* only call deploy_challenge hook if there is work

No need to call the hook if there are no challenges to deploy
2016-12-18 20:25:05 +01:00
CJ Johnson 6086983c02 Minor Grammar Stuff (#319)
* typo

s/pullrequest/pull request/

* proper noun & possessive apostrophe

s/letsencrypts/Let's Encrypt's/

* proper noun / spacing /

s/curl/cURL/
s/letsencryprt/Let's Encrypt/
2016-12-18 20:19:19 +01:00
Lukas Schauer 607c89cae2 updated ngrok url in test.sh 2016-10-17 22:46:28 +02:00
crza a13e410363 Basic implementation for private key rollover (#294)
* initial commit for PRIVATE_KEY_ROLLOVER

* fix if syntax

* rolloverkey without  timestamps

* update example config: PRIVATE_KEY_ROLLOVER

* rolloverkey creation logic updated

* updated tests. untested.

* added cleanup for rolloverkeys: if disabled, delete privkey.roll.pem
2016-10-17 22:40:03 +02:00
Elan Ruusamäe d62a5eeb1e fix lighttpd syntax (#299)
at least in 1.4 the syntax is `server.modules` and it's an array.
and it's always good idea to keep trailing comma to avoid syntax errors when adding new entries.
2016-10-17 22:11:34 +02:00
Elan Ruusamäe 83fa54cc38 examples/hook: no bashism (#300)
use plain shell syntax,
also protect against if arguments contain spaces.
2016-10-17 22:08:14 +02:00
Lukas Schauer a316a094df Revert "strip leading null-bytes from urlbase64" (see #282)
This reverts commit 319852dc8c.
2016-09-21 13:20:51 +02:00
Lukas Schauer 319852dc8c strip leading null-bytes from urlbase64 (fixes #275) 2016-09-17 13:15:15 +02:00
Lukas Schauer 7eca8aec5a use temporary file for DER->PEM conversion (fixes #279) 2016-09-17 13:02:48 +02:00
Lukas Schauer 0c1e958d19 added temporary wrapper script for compatibility with old config locations and symlinks, will be removed in a few weeks 2016-09-17 12:46:46 +02:00
leonklingele caeed7d5e3 Make example hook.sh file executable. (#253)
So one can easily `cp docs/examples/hook.sh .`
2016-09-14 15:11:25 +02:00
Lukas Schauer 047ba60d0d updated date in license file
really early for this change
2016-09-13 20:39:10 +02:00
Lukas Schauer b95b15cad6 update readme with explanation why this project was renamed 2016-09-13 20:15:30 +02:00
Lukas Schauer ec49a4433b fixed a few things after project rename v0.3.1 2016-09-13 20:00:43 +02:00
Lukas Schauer 0ae567aced Update CHANGELOG 2016-09-13 19:55:34 +02:00
Lukas Schauer 6c12f97b9f readme fix 2016-09-13 19:53:43 +02:00