a1cb7cccd2
Add conf.d support
...
This adds support for a new config variable CONFIG_D in the main configuration
file. Setting a path to a directoy for CONFIG_D advises letsencrypt.sh to
source any additional files found in the specified CONFIG_D directory, that
have a '.sh' ending.
By default CONFIG_D is not set, meaning letsencrypt.sh does not source any
additional configuration files.
2016-01-21 16:29:16 +01:00
9baf3532e5
Respect configured BASEDIR for default values
...
If BASEDIR is set in config.sh, this does not modify the (default) values
of either PRIVATE_KEY, WELLKNOWN or LOCKFILE. One needs to manually specify
those three config variables in config.sh, if a different BASEDIR
should be used by letsencrypt.sh.
This commit makes letsencrypt.sh fully aware of a configured BASEDIR.
2016-01-21 16:16:08 +01:00
f0323faf93
Fix possibly broken syntax highlighting
...
The pattern
```
VAR="$(cmd '"')"
```
breaks syntax highlighting in some editors (e.g. gedit or jedit) due to
the tripple double quotes.
2016-01-21 11:58:49 +01:00
429ec400d8
Add --signcsr command
2016-01-21 08:05:58 +01:00
a62968c9b3
Add extract_altnames() function
2016-01-21 08:05:58 +01:00
50e7a072da
Split off CSR signing to separate function
2016-01-21 08:05:58 +01:00
23b0ef5aa5
Merge pull request #89 from germeier/master
...
add support for Elliptic Curve Cryptography (ECC)
2016-01-16 22:41:03 +01:00
a1a9c8a4a5
added header with script-name and url to github repository
2016-01-16 22:29:09 +01:00
c3c9ff4c75
moved OSTYPE check and use built-in [[ for OSTYPE check
2016-01-16 22:28:17 +01:00
0af7f388d6
check exitcode of curl -V because of some issue with ancient versions of curl returning error codes on checking the version number
2016-01-16 21:50:15 +01:00
f7c7d8c599
use different sed version for different system types (mostly for compatibility with ancient linux distros nobody should be using anyway ¯\_(ツ)_/¯)
2016-01-16 21:41:58 +01:00
c71ca3a8b1
add support for Elliptic Curve Cryptography (ECC)
2016-01-16 18:55:36 +01:00
67a44aa4e3
Merge pull request #88 from f1rebird/master
2016-01-15 23:36:28 +01:00
ee62e7cbb2
Merge pull request #82 from jantore/wellknown-http-only
...
Require $WELLKNOWN only when using http-01.
2016-01-15 23:29:14 +01:00
ee077cfadc
Merge pull request #85 from jaquer/fix-exit
...
Added missing space before exit code.
2016-01-15 23:24:45 +01:00
115041cd0f
I's are important
2016-01-15 23:22:24 +01:00
788762437a
Merge pull request #86 from petrkle/lock-dir-writable
...
Check if directory for LOCKFILE is writable.
2016-01-15 23:20:28 +01:00
63ab72a521
check for sed with support for extended regular expressions
2016-01-15 23:03:12 +01:00
61ba0daf66
Fix typo
2016-01-15 10:43:34 +01:00
291b9f245e
Check if directory for LOCKFILE is writable.
2016-01-15 10:25:06 +01:00
7191ed2551
Added missing space before exit code.
2016-01-13 20:33:13 -08:00
2a7b48822a
use -z instead of == "".. it's late.
2016-01-10 04:46:52 +01:00
fb0242a463
show help if no arguments are provided
2016-01-10 04:44:44 +01:00
d9de894cad
Require $WELLKNOWN only when using http-01.
2016-01-09 18:42:50 +01:00
d6ce88233e
call mktemp with -t XXXXXX for compatibility with older BSD versions
2016-01-09 01:38:44 +01:00
20a8169a2d
fixed whitespace-stripping, replace all whitespace in domains.txt entries with single space character ( fixes #60 and #78 )
2016-01-08 23:03:06 +01:00
de17389245
cleanup for dns-01-challenge-support code
2016-01-08 22:51:57 +01:00
68efe6bb61
Merge pull request #77 from germeier/master
...
add support for dns-01 challenge - try 2
2016-01-08 22:26:45 +01:00
e925b293c5
add support for dns-01 challenge - try 2
2016-01-08 22:09:27 +01:00
f7ddaa2eb8
check for mktemp dependency
2016-01-08 22:01:59 +01:00
00810795d1
fixed BASEDIR dependent default config values
2016-01-08 21:55:38 +01:00
30ad9584fd
re-set RENEW_DAYS to 30 (got accidentally reverted in one of the previous commits)
2016-01-08 21:41:47 +01:00
ed27e013d1
make hook a command line parameter
2016-01-08 21:05:16 +01:00
a7934fe72d
do not change exit code of loop in command_sign_domains
2016-01-08 20:33:59 +01:00
d760890c88
changed urlbase64 helper to also use sed for character replacements
2016-01-08 20:18:31 +01:00
f06f764f38
use _exiterr helper in a few more places
2016-01-08 20:00:30 +01:00
bc580335ae
added a few more comments
2016-01-08 20:00:30 +01:00
1446fd8806
removed get_json_array helper, rearranged sign_domain method a bit, made grep for PEM-format-check quiet
2016-01-08 20:00:30 +01:00
59f16407c3
return error on invalid request method in http_request, shortened http_request a bit
2016-01-08 20:00:30 +01:00
994803bf01
removed anti_newline helper
2016-01-08 20:00:30 +01:00
cc605a22bd
moved _openssl helper a bit up to be near the other helper methods
2016-01-08 20:00:29 +01:00
3dcfa8b48e
rewritten command_revoke method (shortened + changed output to look less like one of those weird openssl error messages)
2016-01-08 20:00:29 +01:00
93cd114fee
rewritten init_system method and parts of command_sign_domains (DOMAINS_TXT handling)
2016-01-08 19:24:23 +01:00
7727f5ea61
rewritten help method to get rid of column dependency
2016-01-08 19:13:50 +01:00
9f66bfdb50
rewritten argument handling and moved to new main() method, added dependency checks, added _exiterr helper
2016-01-08 19:10:50 +01:00
16bef17e45
rewritten hex2bin method
2016-01-08 19:02:13 +01:00
ff11639624
moved loading of configuration to seperate method
2016-01-08 18:59:01 +01:00
3a9e97f997
renamed _request method to http_request
2016-01-08 17:59:46 +01:00
da2795d34d
Renew certificate 30 days before expiration
...
According to https://community.letsencrypt.org/t/quick-start-guide/1631
Renewals and Lifetimes:
Certificates from Let's Encrypt are valid for 90 days. We recommend
renewing them every 60 days to provide a nice margin of error.
2016-01-02 21:14:34 +01:00
f090fbcf7f
hide output of grep for pem-format-check
2015-12-20 19:54:43 +01:00
Daniel Beyer