d1e573c037
Keep registration information as json.
...
In some cases you need your registration id,
for example if you want to request a rate limit exception.
So keep the new-reg output on disk.
2016-03-22 14:04:56 +01:00
1561e9fc6d
Use /usr/bin/env bash shebang
...
On FreeBSD bash is installed in /usr/local/bin; this patch
alters the shebang to use /usr/bin/env bash instead, to ensure
that the shell scripts work on (particularly) the *BSDs as well.
2016-02-17 15:53:11 +01:00
6e048f7fe0
Add option to chain challenge hook arguments. Fixes #79 .
2016-02-05 15:49:42 +01:00
a87b92649e
Added LOCKFILE to config.sh.example
2016-02-02 11:16:53 +03:00
a1cb7cccd2
Add conf.d support
...
This adds support for a new config variable CONFIG_D in the main configuration
file. Setting a path to a directoy for CONFIG_D advises letsencrypt.sh to
source any additional files found in the specified CONFIG_D directory, that
have a '.sh' ending.
By default CONFIG_D is not set, meaning letsencrypt.sh does not source any
additional configuration files.
2016-01-21 16:29:16 +01:00
c71ca3a8b1
add support for Elliptic Curve Cryptography (ECC)
2016-01-16 18:55:36 +01:00
184391acaa
Remove home path from config.sh.example
2016-01-09 15:13:48 +01:00
e925b293c5
add support for dns-01 challenge - try 2
2016-01-08 22:09:27 +01:00
da2795d34d
Renew certificate 30 days before expiration
...
According to https://community.letsencrypt.org/t/quick-start-guide/1631
Renewals and Lifetimes:
Certificates from Let's Encrypt are valid for 90 days. We recommend
renewing them every 60 days to provide a nice margin of error.
2016-01-02 21:14:34 +01:00
1eb6f6d287
grab root certificate url from certificate, fixes #43
2015-12-14 14:31:49 +01:00
1e33cfe52b
make default PRIVATE_KEY and WELLKNOWN relative to BASEDIR, even if BASEDIR is overridden in config.sh; basic checks on BASEDIR
2015-12-12 15:50:01 +01:00
4a6f797469
actually move BASEDIR up as intended
2015-12-12 03:48:11 +01:00
0e92aba206
- make private key a config option
...
- fix logic if private key is specified via command line option
- start using PARAM_* for parameters provided at the command line
2015-12-12 03:39:45 +01:00
0972918605
grab action urls from ca-directory
2015-12-08 16:38:25 +01:00
f527eef84a
removed line-break in example config
2015-12-08 16:13:40 +01:00
e32ea24c78
pass altname/domain as second argument to HOOK
2015-12-08 16:04:47 +01:00
454c164b25
Check for config file in various locations
2015-12-08 15:57:22 +01:00
007da420a9
also add default CA definition in description of variable
2015-12-08 15:42:57 +01:00
cb6dc26c38
cleaned up example config
2015-12-08 15:35:45 +01:00
c24843c666
A single HOOK to handle challenge, cleaning of challenge files and uploading of certs.
2015-12-08 15:22:31 +01:00
c70b77a90d
added shebang to example config
2015-12-08 14:43:15 +01:00
ea5b70a3d9
add CONTACT_EMAIL option on registration
2015-12-08 14:38:13 +01:00
329acb58b5
create fullchain.pem
2015-12-07 12:50:31 +01:00
474f33d2ca
added config option to set path for openssl config file (currently only used for generating a signing request)
2015-12-07 11:45:09 +01:00
09ed26de5b
added default BASEDIR to example config
2015-12-07 11:15:10 +01:00
579e231631
Cleaner outputs
2015-12-06 19:51:11 +01:00
3dbbb461f1
generate a new private key for each csr if the user wishes so
2015-12-06 16:27:15 +01:00
ff3dbc5819
default location for acme-challenges
2015-12-06 15:37:41 +01:00
e300c0a173
Renew timeframe as config option
2015-12-06 15:21:20 +01:00
5a213f5f6a
make openssl keysize configurable
2015-12-06 15:05:00 +01:00
b33f128893
add HOOK_CHALLENGE option to run a command before the reponse
2015-12-06 01:26:13 +01:00
f11bb1db6e
set CA setting per default
...
letsencrypt.sh is mainly used with letsencrypt.org.
2015-12-06 01:23:16 +01:00
61f0b7ed7a
initial commit
2015-12-05 02:31:06 +01:00
Bernd Zeimetz