Lukas Schauer
6e802ddc19
include content-type in post requests ( fixes #491 )
2018-03-09 12:25:37 +01:00
Lukas Schauer
0211d24577
require a valid alias to be set for certain wildcard certificates ( fixes #483 )
2018-03-02 18:53:00 +01:00
Lukas Schauer
68274646bb
curl: use custom user agent (temporarily using a bit of 1337)
2018-03-01 21:39:00 +01:00
Lukas Schauer
c0bcf91410
show error details on ocsp update failure
2018-02-22 22:32:39 +01:00
Lukas Schauer
a91074b707
fixed undefined-variable bug on early connection failure (while accessing ca directory)
2018-02-22 22:22:04 +01:00
Ewald Dieterich
a6a07779ad
fixed "sed: invalid option -- 'E'"
2018-02-22 19:28:36 +01:00
Lukas Schauer
a6e6aa7445
fixed spurious return code from hook bricker...
2018-02-14 15:20:26 +01:00
Lukas Schauer
dcdb2940fb
removed random prefix from hook bricker
2018-02-14 14:58:11 +01:00
Lukas Schauer
0ade30cc74
hook-bricker now also warns users on per-certificate-config-hooks
2018-02-13 21:45:30 +01:00
Lukas Schauer
bc34f3aa86
merged random hook with human-readable-message
2018-02-13 21:34:02 +01:00
Lukas Schauer
5940c55e18
prepared future migration to new acmev2 endpoint
2018-02-07 03:14:29 +01:00
Lukas Schauer
2eedd69ee9
request_failure hook: added http response headers as new parameter
2018-02-06 23:33:28 +01:00
Lukas Schauer
be252c7db9
updated changelog
2018-02-06 23:22:53 +01:00
Lukas Schauer
9ebab3e026
added call to random hook to make it clear to hook authors that unknown hooks should just be ignored
2018-02-06 23:16:28 +01:00
Lukas Schauer
ad291207d0
fetch account information if missing
2018-02-06 23:08:40 +01:00
Lukas Schauer
a7b2af2b92
http_request: make http headers available on fd 4
2018-02-06 23:08:16 +01:00
Lukas Schauer
082ed17a0a
added acmev2 staging information to docs
2018-02-06 21:58:42 +01:00
Lukas Schauer
dec5ad5840
read url to terms of service from ca directory
2018-02-06 21:58:42 +01:00
Lukas Schauer
da67297288
only write csr file if renewal will be requested
2018-02-06 21:19:33 +01:00
Lukas Schauer
83bf2664b0
added a few simple example use cases to example hook script
2018-02-06 21:13:37 +01:00
Lukas Schauer
63854b752b
New hook: generate_csr (see example hook script for more information, implements #475 , replaces #377 )
2018-02-06 20:57:33 +01:00
Lukas Schauer
901f9f76e2
pre-bump version
2018-02-06 20:53:09 +01:00
Lukas Schauer
b5de2e26eb
sign_domain: Use existing CSR with matching timestamp
2018-02-06 20:41:26 +01:00
Lukas Schauer
73a116e879
Create required certificate and chaincache directories outside of sign_domain
2018-02-06 20:40:32 +01:00
Lukas Schauer
9c35fce61e
Pre-generate timestamp outside of sign_domain
2018-02-06 20:39:23 +01:00
Lukas Schauer
87194f6596
Remove additional whitespace from extract_altnames
2018-02-06 20:38:02 +01:00
Mattia Rizzolo
62d37c9b3d
Fix grammer error in the manpage ( fixes #466 )
...
"allows to" requires a subject (e.g. "allows one to"), without it's just
syntactically wrong. Change the verb entirely to workaround the
problem.
2018-02-06 19:14:12 +01:00
Lukas Schauer
b53cb6643b
moved manpage to docs directory
2018-02-06 18:53:21 +01:00
Lukas Schauer
fb41783885
automatic discovery of remote acme api version
2018-02-05 19:20:28 +01:00
Nick Muerdter
0bc0bd13d6
Fix globbing of CONFIG_D *.sh files.
...
With the globbing changes made in
61083cf522
2018-02-03 16:11:14 -07:00
Lukas Schauer
6d02bfdb42
shrink "logo" a bit
2018-02-03 22:14:43 +01:00
Lukas Schauer
727443483d
added acmev2 information to readme
2018-02-03 22:12:32 +01:00
Lukas Schauer
7a0e71c6c2
follow location on http get-requests
2018-02-03 22:03:58 +01:00
Lukas Schauer
45f5c17260
fixed altname extraction of csr with wildcard domains, moved altname extraction from sign_csr to command_sign_csr
2018-02-02 23:47:29 +01:00
Lukas Schauer
61083cf522
disable globbing globally (only allow for cleanup routine)
2018-02-02 23:45:34 +01:00
Lukas Schauer
afba7c694c
moved deploy_challenge to earlier loop so it works with multiple challenge tokens on the same identifier (important for wildcard certificate), fixed array-name, removed hook-chain warning
2018-01-28 19:48:25 +01:00
Pandark
471899b4d8
Add ^~ to nginx location block
...
To make sure it is not overridden.
> http://nginx.org/en/docs/http/ngx_http_core_module.html#location :
> If the longest matching prefix location has the “^~” modifier then regular expressions are not checked.
2018-01-28 06:18:10 +01:00
Lukas Schauer
ec5dbcc816
updated changelog
2018-01-28 06:14:44 +01:00
Lukas Schauer
0f69481e2b
rewrote challenge validation to iterate over authorizations instead of altnames (fixes some acmev2 validation edgecases), also removed broken test-script (for now)
2018-01-28 06:13:37 +01:00
Lukas Schauer
6f3fed496d
rewrote donation section in readme
2018-01-28 06:13:01 +01:00
Lukas Schauer
5fd93ea874
be more verbose for acme v2 challenge handling
2018-01-27 22:51:39 +01:00
Lukas Schauer
656af8cadc
don't fail on nested json array in challenge info
2018-01-13 23:10:31 +01:00
Lukas Schauer
3e521e1c01
fixed domains.txt parsing (theoretically compatible with wildcard domains)
2018-01-13 20:54:55 +01:00
Martin Strobel
68cb1e0661
ACME v02 Support
2018-01-13 20:17:25 +01:00
Lukas Schauer
35a9f31643
changelog template, year update
2018-01-13 20:10:32 +01:00
Lukas Schauer
4a811759dc
version 0.5.0
2018-01-13 20:08:12 +01:00
Lukas Schauer
2adc57791c
Add optional user and group configuration ( fixes #434 )
2017-12-18 00:35:26 +01:00
Lukas Schauer
f35aed6ae6
replace backticks with escaped dollarbracethingy ( fixes #438 )
2017-12-18 00:01:47 +01:00
Lukas Schauer
b6b56d0df7
export certificate alias to be used in hook scripts
2017-12-17 23:54:19 +01:00
Lukas Schauer
13c853d43b
also reset configvars after domains loop
2017-12-17 23:51:23 +01:00
