9ebab3e026
added call to random hook to make it clear to hook authors that unknown hooks should just be ignored
2018-02-06 23:16:28 +01:00
ad291207d0
fetch account information if missing
2018-02-06 23:08:40 +01:00
a7b2af2b92
http_request: make http headers available on fd 4
2018-02-06 23:08:16 +01:00
082ed17a0a
added acmev2 staging information to docs
2018-02-06 21:58:42 +01:00
dec5ad5840
read url to terms of service from ca directory
2018-02-06 21:58:42 +01:00
da67297288
only write csr file if renewal will be requested
2018-02-06 21:19:33 +01:00
83bf2664b0
added a few simple example use cases to example hook script
2018-02-06 21:13:37 +01:00
63854b752b
New hook: generate_csr (see example hook script for more information, implements #475 , replaces #377 )
2018-02-06 20:57:33 +01:00
901f9f76e2
pre-bump version
2018-02-06 20:53:09 +01:00
b5de2e26eb
sign_domain: Use existing CSR with matching timestamp
2018-02-06 20:41:26 +01:00
73a116e879
Create required certificate and chaincache directories outside of sign_domain
2018-02-06 20:40:32 +01:00
9c35fce61e
Pre-generate timestamp outside of sign_domain
2018-02-06 20:39:23 +01:00
87194f6596
Remove additional whitespace from extract_altnames
2018-02-06 20:38:02 +01:00
62d37c9b3d
Fix grammer error in the manpage ( fixes #466 )
...
"allows to" requires a subject (e.g. "allows one to"), without it's just
syntactically wrong. Change the verb entirely to workaround the
problem.
2018-02-06 19:14:12 +01:00
b53cb6643b
moved manpage to docs directory
2018-02-06 18:53:21 +01:00
fb41783885
automatic discovery of remote acme api version
2018-02-05 19:20:28 +01:00
0bc0bd13d6
Fix globbing of CONFIG_D *.sh files.
...
With the globbing changes made in
61083cf522
2018-02-03 16:11:14 -07:00
6d02bfdb42
shrink "logo" a bit
2018-02-03 22:14:43 +01:00
727443483d
added acmev2 information to readme
2018-02-03 22:12:32 +01:00
7a0e71c6c2
follow location on http get-requests
2018-02-03 22:03:58 +01:00
45f5c17260
fixed altname extraction of csr with wildcard domains, moved altname extraction from sign_csr to command_sign_csr
2018-02-02 23:47:29 +01:00
61083cf522
disable globbing globally (only allow for cleanup routine)
2018-02-02 23:45:34 +01:00
afba7c694c
moved deploy_challenge to earlier loop so it works with multiple challenge tokens on the same identifier (important for wildcard certificate), fixed array-name, removed hook-chain warning
2018-01-28 19:48:25 +01:00
471899b4d8
Add ^~ to nginx location block
...
To make sure it is not overridden.
> http://nginx.org/en/docs/http/ngx_http_core_module.html#location :
> If the longest matching prefix location has the “^~” modifier then regular expressions are not checked.
2018-01-28 06:18:10 +01:00
ec5dbcc816
updated changelog
2018-01-28 06:14:44 +01:00
0f69481e2b
rewrote challenge validation to iterate over authorizations instead of altnames (fixes some acmev2 validation edgecases), also removed broken test-script (for now)
2018-01-28 06:13:37 +01:00
6f3fed496d
rewrote donation section in readme
2018-01-28 06:13:01 +01:00
5fd93ea874
be more verbose for acme v2 challenge handling
2018-01-27 22:51:39 +01:00
656af8cadc
don't fail on nested json array in challenge info
2018-01-13 23:10:31 +01:00
3e521e1c01
fixed domains.txt parsing (theoretically compatible with wildcard domains)
2018-01-13 20:54:55 +01:00
68cb1e0661
ACME v02 Support
2018-01-13 20:17:25 +01:00
35a9f31643
changelog template, year update
2018-01-13 20:10:32 +01:00
4a811759dc
version 0.5.0
2018-01-13 20:08:12 +01:00
2adc57791c
Add optional user and group configuration ( fixes #434 )
2017-12-18 00:35:26 +01:00
f35aed6ae6
replace backticks with escaped dollarbracethingy ( fixes #438 )
2017-12-18 00:01:47 +01:00
b6b56d0df7
export certificate alias to be used in hook scripts
2017-12-17 23:54:19 +01:00
13c853d43b
also reset configvars after domains loop
2017-12-17 23:51:23 +01:00
c62f3d91fc
implement certificate aliases as suggested by typingArtist ( fixes #396 )
2017-12-17 23:50:46 +01:00
eb1c4ac41d
make certdir a parameter to sign_domain
2017-12-17 22:55:12 +01:00
3ec54e7e0f
Add man page
2017-12-14 00:35:54 +01:00
88267db7e2
Update wellknown.md
...
add Hiawatha to list
2017-12-14 00:33:11 +01:00
eb4aaefda1
also inform about still-valid ocsp stapling files ( fixes #457 )
2017-12-14 00:11:40 +01:00
3d97799d6a
always revalidate challenges if --force is set ( fixes #370 )
2017-11-07 14:43:41 +01:00
742c0ad176
fix ocsp.der symlink
2017-10-22 16:31:25 +02:00
7f410e9bff
fix account command
...
backup file path generation should split the filename on the last dot instead of the first
2017-10-17 16:39:46 +02:00
da3428a84a
use nullglob, disable warning on empty CONFIG_D directory
2017-09-21 18:10:01 +02:00
b5e178ea75
allow for spaces when extracting commonName from csr ( fixes #423 )
2017-09-20 15:44:05 +02:00
bc20ec79f3
also show freebsd version
2017-09-20 15:31:38 +02:00
ce9b42d8ad
fix issue #426 - version info on FreeBSD
2017-09-20 15:28:57 +02:00
f838d93f40
stop verification loop after invalid challenge ( fixes #431 )
2017-09-20 15:17:30 +02:00
Lukas Schauer