fixed signcsr test

[andy/dehydrated.git] / config.sh.example

diff --git a/config.sh.example b/config.sh.example
index b58356e8130cf283f8bd47f48cafeb82adfc061e..40ac854707549f66c0f525440e0a9a660f93359a 100644 (file)
--- a/config.sh.example
+++ b/config.sh.example
@@ -1,11 +1,10 @@
 #!/bin/bash
 
 ########################################################
 #!/bin/bash
 
 ########################################################

-# This is the config file for letsencrypt.sh           #
+# This is the main config file for letsencrypt.sh      #

 #                                                      #
 # This file is looked for in the following locations:  #
 # $SCRIPTDIR/config.sh (next to this script)           #
 #                                                      #
 # This file is looked for in the following locations:  #
 # $SCRIPTDIR/config.sh (next to this script)           #

-# ${HOME}/.letsencrypt.sh/config.sh (in user home)     #

 # /usr/local/etc/letsencrypt.sh/config.sh              #
 # /etc/letsencrypt.sh/config.sh                        #
 # ${PWD}/config.sh (in current working-directory)      #
 # /usr/local/etc/letsencrypt.sh/config.sh              #
 # /etc/letsencrypt.sh/config.sh                        #
 # ${PWD}/config.sh (in current working-directory)      #


@@ -19,6 +18,15 @@
 # Path to license agreement (default: https://letsencrypt.org/documents/LE-SA-v1.0.1-July-27-2015.pdf)
 #LICENSE="https://letsencrypt.org/documents/LE-SA-v1.0.1-July-27-2015.pdf"
 
 # Path to license agreement (default: https://letsencrypt.org/documents/LE-SA-v1.0.1-July-27-2015.pdf)
 #LICENSE="https://letsencrypt.org/documents/LE-SA-v1.0.1-July-27-2015.pdf"
 

+# Which challenge should be used? Currently http-01 and dns-01 are supported
+#CHALLENGETYPE="http-01"
+
+# Path to a directory containing additional config files, allowing to override
+# the defaults found in the main configuration file. Additional config files
+# in this directory needs to be named with a '.sh' ending.
+# default: <unset>
+#CONFIG_D=
+

 # Base directory for account key, generated certificates and list of domains (default: $SCRIPTDIR -- uses config directory if undefined)
 #BASEDIR=$SCRIPTDIR
 
 # Base directory for account key, generated certificates and list of domains (default: $SCRIPTDIR -- uses config directory if undefined)
 #BASEDIR=$SCRIPTDIR
 


@@ -34,9 +42,6 @@
 # Path to openssl config file (default: <unset> - tries to figure out system default)
 #OPENSSL_CNF=
 
 # Path to openssl config file (default: <unset> - tries to figure out system default)
 #OPENSSL_CNF=
 

-# Name of root certificate (default: lets-encrypt-x1-cross-signed.pem)
-#ROOTCERT="lets-encrypt-x1-cross-signed.pem"
-

 # Program or function called in certain situations
 #
 # After generating the challenge-response, or after failed challenge (in this case altname is empty)
 # Program or function called in certain situations
 #
 # After generating the challenge-response, or after failed challenge (in this case altname is empty)


@@ -49,11 +54,20 @@
 # default: <unset>
 #HOOK=
 
 # default: <unset>
 #HOOK=
 

-# Minimum days before expiration to automatically renew certificate (default: 14)
-#RENEW_DAYS="14"
+# Chain clean_challenge|deploy_challenge arguments together into one hook call per certificate (default: no)
+#HOOK_CHAIN="no"
+
+# Minimum days before expiration to automatically renew certificate (default: 30)
+#RENEW_DAYS="30"

 
 # Regenerate private keys instead of just signing new certificates on renewal (default: no)
 #PRIVATE_KEY_RENEW="no"
 
 
 # Regenerate private keys instead of just signing new certificates on renewal (default: no)
 #PRIVATE_KEY_RENEW="no"
 

+# Which public key algorithm should be used? Supported: rsa, prime256v1 and secp384r1
+#KEY_ALGO=rsa
+

 # E-mail to use during the registration (default: <unset>)
 #CONTACT_EMAIL=
 # E-mail to use during the registration (default: <unset>)
 #CONTACT_EMAIL=

+
+# Lockfile location, to prevent concurrent access (default: $BASEDIR/lock)
+#LOCKFILE="${BASEDIR}/lock"