starred/dehydrated
1
0
Fork 0
mirror of https://github.com/dehydrated-io/dehydrated.git synced 2026-03-17 23:03:47 +01:00
Code Issues 79 Packages Projects Releases 10 Wiki Activity
95 Commits 5 Branches 15 Tags
d322e072d643dcee63785be1742a56a8178f74c0
Commit Graph

95 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Simon Ruderich
d322e072d6 import-certs.sh: simplify expiry check 2015-12-08 16:04:47 +01:00
Simon Ruderich
526843d66e ugly fix to syntax highlighting in Vim 2015-12-08 16:04:47 +01:00
Simon Ruderich
e567a87e69 README.md: letsencrypt.sh is written in bash 2015-12-08 16:04:47 +01:00
Simon Ruderich
ffa3542787 chmod +x import-account.pl 2015-12-08 16:04:47 +01:00
Simon Ruderich
1369c9afb8 replace echo with printf 2015-12-08 16:04:47 +01:00
Simon Ruderich
cbe1eb2cda fix typo in comment 2015-12-08 16:04:47 +01:00
Simon Ruderich
c10390fbd1 simplify expiry check 2015-12-08 16:04:47 +01:00
Simon Ruderich
3f6ff8f753 replace rm -f; ln -s with ln -sf 2015-12-08 16:04:47 +01:00
Lukas Schauer
454c164b25 Check for config file in various locations 2015-12-08 15:57:22 +01:00
Lukas Schauer
007da420a9 also add default CA definition in description of variable 2015-12-08 15:42:57 +01:00
Lukas Schauer
16943702a5 fixed default path to WELLKNOWN and moved SCRIPTDIR definition out of default-config block 2015-12-08 15:38:33 +01:00
Lukas Schauer
cb6dc26c38 cleaned up example config 2015-12-08 15:35:45 +01:00
et@corde.org
c24843c666 A single HOOK to handle challenge, cleaning of challenge files and uploading of certs. 2015-12-08 15:22:31 +01:00
Lukas Schauer
15accf9013 certificate comes first in fullchain.pem, fixes #26 2015-12-08 14:46:50 +01:00
Lukas Schauer
c70b77a90d added shebang to example config 2015-12-08 14:43:15 +01:00
Lukas Schauer
ead15632ff making shellcheck happy 2015-12-08 14:42:26 +01:00
et@corde.org
ea5b70a3d9 add CONTACT_EMAIL option on registration 2015-12-08 14:38:13 +01:00
Lukas Schauer
12c566b1d6 added certificate revocation to feature-list 2015-12-07 21:15:32 +01:00
Markus Germeier
063d28a6dc implement revoke 2015-12-07 21:00:36 +01:00
Lukas Schauer
0d7913ab61 renamed import scripts, updated readme 2015-12-07 14:56:04 +01:00
Lukas Schauer
f343dc11e8 update symlinks after signing the certificate 2015-12-07 14:28:53 +01:00
Lukas Schauer
c764d03ee2 making shellcheck happy 2015-12-07 14:00:51 +01:00
Lukas Schauer
2d93c6fb02 umask in import script 2015-12-07 13:22:25 +01:00
Lukas Schauer
067d7ee4ba added import script (allows import of existing certificates from the original letsencrypt client) 2015-12-07 13:21:12 +01:00
Lukas Schauer
329acb58b5 create fullchain.pem 2015-12-07 12:50:31 +01:00
Lukas Schauer
3cc587c224 also store csr with timestamp and symlink to default location 2015-12-07 12:41:57 +01:00
Lukas Schauer
1f08fda757 look for domains.txt under BASEDIR 2015-12-07 12:36:56 +01:00
Lukas Schauer
77df80b5a4 updated readme 2015-12-07 12:19:15 +01:00
Lukas Schauer
274e8e4192 updated readme 2015-12-07 12:18:06 +01:00
Lukas Schauer
00837b86ae delete challenge response after verification 2015-12-07 12:10:51 +01:00
Lukas Schauer
98a6c549ff parse challenges json differently to be compatible with bsd sed 2015-12-07 12:08:30 +01:00
Lukas Schauer
474f33d2ca added config option to set path for openssl config file (currently only used for generating a signing request) 2015-12-07 11:45:09 +01:00
Lukas Schauer
cd13a9c21a use bash functionality instead of sed to filter SAN variable 2015-12-07 11:36:58 +01:00
Lukas Schauer
81cb6ac77b don't use '-r' on sed 2015-12-07 11:36:27 +01:00
Lukas Schauer
219b3e9d0a making shellcheck happy 2015-12-07 11:26:14 +01:00
Lukas Schauer
401f5f7597 use absolute path of script directory as default BASEDIR, remove trailing slash from BASEDIR 2015-12-07 11:21:26 +01:00
Lukas Schauer
09ed26de5b added default BASEDIR to example config 2015-12-07 11:15:10 +01:00
Andrey Jr. Melnikov
5b29db9755 Store keys and certs in $BASEDIR 2015-12-07 11:07:43 +01:00
Martin Geiseler
579e231631 Cleaner outputs 2015-12-06 19:51:11 +01:00
Lukas Schauer
5d24285f5e Merge pull request #13 from germeier/master 
show expire date when we don't need to renew a certifcate
 2015-12-06 18:42:04 +01:00
Markus Germeier
9f93ef5e41 change openssl to use enddate for expiry date check 2015-12-06 18:25:54 +01:00
Markus Germeier
9c69b624c2 show expire date when we don't need to renew a certifcate 2015-12-06 17:03:59 +01:00
Lukas Schauer
ae8e5c8e17 Merge pull request #12 from germeier/newkeys 
generate a new private key for each csr if the user wishes so
 2015-12-06 16:47:58 +01:00
Lukas Schauer
3cb292cbb8 trying to capture http status codes from curl instead of using "--fail" to be able to capture acme error messages 2015-12-06 16:35:46 +01:00
Markus Germeier
3dbbb461f1 generate a new private key for each csr if the user wishes so 2015-12-06 16:27:15 +01:00
Lukas Schauer
831b973a89 Merge pull request #11 from germeier/fixpending 
fixed logic to check status from our challenge
 2015-12-06 16:09:49 +01:00
Markus Germeier
76a37834be fixed logic to check status from our challenge 
the old code had a problem and would interpret a challenge that
returned "pending" and then "invalid" as valid.

This code actually has another problem. The RFC defines:

"status (optional, string):  The status of this authorization.
 Possible values are: "pending", "valid", and "invalid".  If this
 field is missing, then the default value is "pending"."

So actually the correct way to implement this would be:

while [[ -z "${status}" ]] || [[ "${status}" = "pending" ]]; do

But without further checks this might lead to an endless loop. So this
is "good enough(tm)". ;)
 2015-12-06 15:51:38 +01:00
Lukas Schauer
3390080ccb removed acme-challenges directory from git, create if needed 2015-12-06 15:41:49 +01:00
Lukas Schauer
440dc30d5e make config.sh optional 2015-12-06 15:38:52 +01:00
Lukas Schauer
ff3dbc5819 default location for acme-challenges 2015-12-06 15:37:41 +01:00