starred/dehydrated
1
0
Fork 0
mirror of https://github.com/dehydrated-io/dehydrated.git synced 2026-05-17 12:26:55 +02:00
Code Issues 79 Packages Projects Releases 10 Wiki Activity
484 Commits 5 Branches 15 Tags
61083cf52231e09e3a9b599d602c06978704ec57
Commit Graph

484 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Eihrister 8456855e48 Add new parameter --lock-suffix. (#287) 
* Add new parameter --lock-suffix.

This enables automation systems to run multiple instances of dehydrated
while still maintaining a locking facility. This is necessary for
projects like https://github.com/GUI/lua-resty-auto-ssl.

With this feature, one could run the script multiple times, while still
having a form of locking:

./dehydrated --lock-suffix test1.example.com -d test1.example.com
./dehydrated --lock-suffix test2.example.com -d test2.example.com
./dehydrated --lock-suffix test3.example.com -d test3.example.com
./dehydrated --lock-suffix test4.example.com -d test4.example.com
./dehydrated --lock-suffix test5.example.com -d test5.example.com

When starts the script with the same locking suffix, the scripts exits
like it normally would when locked. This will give you the benefits of
using --no-lock, without the disadvantages of it.

* Fixed unbound variable error for new PARAM_LOCKFILE_SUFFIX.
 2016-12-18 20:25:49 +01:00
sth 9729751d93 Skip challenge for already validated domains (#293) 
* skip challenge for already validated domains

* only call deploy_challenge hook if there is work

No need to call the hook if there are no challenges to deploy
 2016-12-18 20:25:05 +01:00
CJ Johnson 6086983c02 Minor Grammar Stuff (#319) 
* typo

s/pullrequest/pull request/

* proper noun & possessive apostrophe

s/letsencrypts/Let's Encrypt's/

* proper noun / spacing /

s/curl/cURL/
s/letsencryprt/Let's Encrypt/
 2016-12-18 20:19:19 +01:00
Lukas Schauer 607c89cae2 updated ngrok url in test.sh 2016-10-17 22:46:28 +02:00
crza a13e410363 Basic implementation for private key rollover (#294) 
* initial commit for PRIVATE_KEY_ROLLOVER

* fix if syntax

* rolloverkey without  timestamps

* update example config: PRIVATE_KEY_ROLLOVER

* rolloverkey creation logic updated

* updated tests. untested.

* added cleanup for rolloverkeys: if disabled, delete privkey.roll.pem
 2016-10-17 22:40:03 +02:00
Elan Ruusamäe d62a5eeb1e fix lighttpd syntax (#299) 
at least in 1.4 the syntax is `server.modules` and it's an array.
and it's always good idea to keep trailing comma to avoid syntax errors when adding new entries.
 2016-10-17 22:11:34 +02:00
Elan Ruusamäe 83fa54cc38 examples/hook: no bashism (#300) 
use plain shell syntax,
also protect against if arguments contain spaces.
 2016-10-17 22:08:14 +02:00
Lukas Schauer a316a094df Revert "strip leading null-bytes from urlbase64" (see #282) 
This reverts commit 319852dc8c.
 2016-09-21 13:20:51 +02:00
Lukas Schauer 319852dc8c strip leading null-bytes from urlbase64 (fixes #275) 2016-09-17 13:15:15 +02:00
Lukas Schauer 7eca8aec5a use temporary file for DER->PEM conversion (fixes #279) 2016-09-17 13:02:48 +02:00
Lukas Schauer 0c1e958d19 added temporary wrapper script for compatibility with old config locations and symlinks, will be removed in a few weeks 2016-09-17 12:46:46 +02:00
leonklingele caeed7d5e3 Make example hook.sh file executable. (#253) 
So one can easily `cp docs/examples/hook.sh .`
 2016-09-14 15:11:25 +02:00
Lukas Schauer 047ba60d0d updated date in license file 
really early for this change
 2016-09-13 20:39:10 +02:00
Lukas Schauer b95b15cad6 update readme with explanation why this project was renamed 2016-09-13 20:15:30 +02:00
Lukas Schauer ec49a4433b fixed a few things after project rename v0.3.1 2016-09-13 20:00:43 +02:00
Lukas Schauer 0ae567aced Update CHANGELOG 2016-09-13 19:55:34 +02:00
Lukas Schauer 6c12f97b9f readme fix 2016-09-13 19:53:43 +02:00
Lukas Schauer 64e35463cb renamed project to dehydrated and main script to dehydrated.sh 2016-09-13 19:48:27 +02:00
Lukas Schauer 992beecbdb release v0.3.0 v0.3.0 2016-09-07 21:20:28 +02:00
leonklingele 6192b33ac2 ECDSA is supported since February 10, 2016 (#260) 
Let's Encrypt will however sign all ECDSA certs with an RSA intermediate certificate.
https://letsencrypt.org/upcoming-features/
 2016-08-22 15:40:37 +02:00
leonklingele 47602dea04 Update staging doc: Let's Encrypt is no longer in beta. (#259) 2016-08-22 15:38:29 +02:00
leonklingele 3a66a7f8d2 Fix default license help text in example config (#254) 2016-08-06 15:32:53 +02:00
Lukas Schauer 624ce4436a updated readme 2016-08-04 00:11:08 +02:00
Lukas Schauer d81eb58536 Only print full chain on signcsr command if --full-chain/-fc is set (related to #150) 2016-08-04 00:11:02 +02:00
BtbN 117d5d6228 Echo newline after error details 2016-08-03 23:50:59 +02:00
BtbN 34565c193d Add support for --keep-going in cron mode 
Fixes #154
 2016-08-03 23:50:59 +02:00
Lukas Schauer ca0249c46c Update staging.md 2016-08-03 23:47:57 +02:00
Lukas Schauer afabfff06e updated url to letsencrypt license agreement 2016-08-01 20:35:46 +02:00
Lukas Schauer bd9cc5b0c4 Added option to run letsencrypt.sh without locks 
This should only be used when letsencrypt.sh is under control by a
different script which makes sure that no two processes are touching the
same files.
 2016-07-21 12:34:40 +02:00
Lukas Schauer 194464b04b Default WELLKNOWN location is now /var/www/letsencrypt 
With this change private and public files are now separated by default.
 2016-07-20 17:04:25 +02:00
chkhanu 364bcccf74 Added option to select IP version of name to address resolution (#231) 2016-07-20 16:49:04 +02:00
Martin Schut 44aca90cd7 Introduce per cert configuration directory DOMAINS_D (#242) 2016-07-13 13:23:15 +02:00
Lukas Schauer 2042b177c7 modified lighttpd example config 2016-06-10 23:41:59 +02:00
Domen Puncer Kugler ae98ff6767 Add Lighttpd example to wellknown.md (#224) 2016-06-08 01:49:50 +02:00
Lukas Schauer 194d543fa1 removed ACCOUNT_KEY and ACCOUNT_KEY_JSON from example config 2016-06-04 11:12:30 +02:00
Christian Tacke df292dece2 Include method and URL in curl error (#214) 
In case curl gives an error, it's helpful to know the URL
being tried and the method. In the GET case, one can easily
retry in the shell and debug this.
 2016-06-04 04:15:16 +02:00
Lukas Schauer f4138efab9 changed dependency check for diff to be compatible with openbsd diff (fixes #219) 2016-06-04 04:12:21 +02:00
Lukas Schauer 034ec30c7d added multi-account support (fixes #92, #163) 2016-06-04 04:01:24 +02:00
Lukas Schauer ec48906992 initial support for configuration on per-certificate base (#105) 2016-05-26 17:11:42 +02:00
Lukas Schauer 64864f5fa6 added signcsr change to CHANGELOG 2016-05-26 16:04:01 +02:00
Lukas Schauer 620c7eb23e output CA cert for signcsr command (fixes #150) 2016-05-26 15:44:59 +02:00
Lukas Schauer 4e8f944b72 added CERTDIR change to CHANGELOG 2016-05-26 15:06:07 +02:00
Lukas Schauer 8e77ba5e02 added option to set csr-flag indicating ocsp stapling to be mandatory 2016-05-26 15:02:23 +02:00
Alex Macleod 0d8b928923 Check that the detected config is a file (#211) 2016-05-26 15:02:15 +02:00
Alex Macleod 785ffa5539 Make certificate output location configurable (#210) 2016-05-26 14:53:01 +02:00
Lukas Schauer d5b285868e renamed "config.sh" to "config" 2016-05-22 22:34:28 +02:00
Daniel Beyer 722430039b Remove unneded shebang for config.sh.example 2016-05-22 22:25:14 +02:00
Lukas Schauer 41aae07343 Update CHANGELOG 2016-05-22 18:50:17 +02:00
Daniel Beyer a3e5ed361b Make location of domains.txt configurable (#204) 
This is implemented by defining ${DOMAINS_TXT} in config.sh. If not
set in config.sh, it defaults to the previously (hard-coded) location,
which is ${BASEDIR}/domains.txt.
 2016-05-22 18:49:17 +02:00
Lukas Schauer 2b50c72b75 release version 0.2.0 v0.2.0 2016-05-22 16:10:12 +02:00