]>
git.street.me.uk Git - andy/dehydrated.git/log
Lukas Schauer [Mon, 19 Dec 2016 00:21:43 +0000 (01:21 +0100)]
removed temporary wrapper script
nkovacne [Sun, 18 Dec 2016 19:31:08 +0000 (20:31 +0100)]
Adding the invalid_challenge hook (#278)
Eihrister [Sun, 18 Dec 2016 19:25:49 +0000 (20:25 +0100)]
Add new parameter --lock-suffix. (#287)
* Add new parameter --lock-suffix.
This enables automation systems to run multiple instances of dehydrated
while still maintaining a locking facility. This is necessary for
projects like https://github.com/GUI/lua-resty-auto-ssl.
With this feature, one could run the script multiple times, while still
having a form of locking:
./dehydrated --lock-suffix test1.example.com -d test1.example.com
./dehydrated --lock-suffix test2.example.com -d test2.example.com
./dehydrated --lock-suffix test3.example.com -d test3.example.com
./dehydrated --lock-suffix test4.example.com -d test4.example.com
./dehydrated --lock-suffix test5.example.com -d test5.example.com
When starts the script with the same locking suffix, the scripts exits
like it normally would when locked. This will give you the benefits of
using --no-lock, without the disadvantages of it.
* Fixed unbound variable error for new PARAM_LOCKFILE_SUFFIX.
sth [Sun, 18 Dec 2016 19:25:05 +0000 (20:25 +0100)]
Skip challenge for already validated domains (#293)
* skip challenge for already validated domains
* only call deploy_challenge hook if there is work
No need to call the hook if there are no challenges to deploy
CJ Johnson [Sun, 18 Dec 2016 19:19:19 +0000 (11:19 -0800)]
Minor Grammar Stuff (#319)
* typo
s/pullrequest/pull request/
* proper noun & possessive apostrophe
s/letsencrypts/Let's Encrypt's/
* proper noun / spacing /
s/curl/cURL/
s/letsencryprt/Let's Encrypt/
Lukas Schauer [Mon, 17 Oct 2016 20:46:28 +0000 (22:46 +0200)]
updated ngrok url in test.sh
crza [Mon, 17 Oct 2016 20:40:03 +0000 (22:40 +0200)]
Basic implementation for private key rollover (#294)
* initial commit for PRIVATE_KEY_ROLLOVER
* fix if syntax
* rolloverkey without timestamps
* update example config: PRIVATE_KEY_ROLLOVER
* rolloverkey creation logic updated
* updated tests. untested.
* added cleanup for rolloverkeys: if disabled, delete privkey.roll.pem
Elan Ruusamäe [Mon, 17 Oct 2016 20:11:34 +0000 (23:11 +0300)]
fix lighttpd syntax (#299)
at least in 1.4 the syntax is `server.modules` and it's an array.
and it's always good idea to keep trailing comma to avoid syntax errors when adding new entries.
Elan Ruusamäe [Mon, 17 Oct 2016 20:08:14 +0000 (23:08 +0300)]
examples/hook: no bashism (#300)
use plain shell syntax,
also protect against if arguments contain spaces.
Lukas Schauer [Wed, 21 Sep 2016 11:20:51 +0000 (13:20 +0200)]
Revert "strip leading null-bytes from urlbase64" (see #282)
This reverts commit
319852dc8cf167d8baeb0848b4998e86a02aa2d0 .
Lukas Schauer [Sat, 17 Sep 2016 11:15:15 +0000 (13:15 +0200)]
strip leading null-bytes from urlbase64 (fixes #275)
Lukas Schauer [Sat, 17 Sep 2016 11:02:48 +0000 (13:02 +0200)]
use temporary file for DER->PEM conversion (fixes #279)
Lukas Schauer [Sat, 17 Sep 2016 10:44:41 +0000 (12:44 +0200)]
added temporary wrapper script for compatibility with old config locations and symlinks, will be removed in a few weeks
leonklingele [Wed, 14 Sep 2016 13:11:25 +0000 (15:11 +0200)]
Make example hook.sh file executable. (#253)
So one can easily `cp docs/examples/hook.sh .`
Lukas Schauer [Tue, 13 Sep 2016 18:39:10 +0000 (20:39 +0200)]
updated date in license file
really early for this change
Lukas Schauer [Tue, 13 Sep 2016 18:15:30 +0000 (20:15 +0200)]
update readme with explanation why this project was renamed
Lukas Schauer [Tue, 13 Sep 2016 17:57:14 +0000 (19:57 +0200)]
fixed a few things after project rename
Lukas Schauer [Tue, 13 Sep 2016 17:55:34 +0000 (19:55 +0200)]
Update CHANGELOG
Lukas Schauer [Tue, 13 Sep 2016 17:53:43 +0000 (19:53 +0200)]
readme fix
Lukas Schauer [Tue, 13 Sep 2016 17:48:27 +0000 (19:48 +0200)]
renamed project to dehydrated and main script to dehydrated.sh
Lukas Schauer [Wed, 7 Sep 2016 19:20:28 +0000 (21:20 +0200)]
release v0.3.0
leonklingele [Mon, 22 Aug 2016 13:40:37 +0000 (15:40 +0200)]
ECDSA is supported since February 10, 2016 (#260)
Let's Encrypt will however sign all ECDSA certs with an RSA intermediate certificate.
https://letsencrypt.org/upcoming-features/
leonklingele [Mon, 22 Aug 2016 13:38:29 +0000 (15:38 +0200)]
Update staging doc: Let's Encrypt is no longer in beta. (#259)
leonklingele [Sat, 6 Aug 2016 13:32:53 +0000 (15:32 +0200)]
Fix default license help text in example config (#254)
Lukas Schauer [Wed, 3 Aug 2016 22:11:08 +0000 (00:11 +0200)]
updated readme
Lukas Schauer [Wed, 3 Aug 2016 22:11:02 +0000 (00:11 +0200)]
Only print full chain on signcsr command if --full-chain/-fc is set (related to #150)
BtbN [Tue, 23 Feb 2016 14:05:08 +0000 (15:05 +0100)]
Echo newline after error details
BtbN [Tue, 23 Feb 2016 14:02:18 +0000 (15:02 +0100)]
Add support for --keep-going in cron mode
Fixes #154
Lukas Schauer [Wed, 3 Aug 2016 21:47:57 +0000 (23:47 +0200)]
Update staging.md
Lukas Schauer [Mon, 1 Aug 2016 18:35:46 +0000 (20:35 +0200)]
updated url to letsencrypt license agreement
Lukas Schauer [Thu, 21 Jul 2016 10:34:40 +0000 (12:34 +0200)]
Added option to run letsencrypt.sh without locks
This should only be used when letsencrypt.sh is under control by a
different script which makes sure that no two processes are touching the
same files.
Lukas Schauer [Wed, 20 Jul 2016 15:04:25 +0000 (17:04 +0200)]
Default WELLKNOWN location is now `/var/www/letsencrypt`
With this change private and public files are now separated by default.
chkhanu [Wed, 20 Jul 2016 14:49:04 +0000 (21:49 +0700)]
Added option to select IP version of name to address resolution (#231)
Martin Schut [Wed, 13 Jul 2016 11:23:15 +0000 (13:23 +0200)]
Introduce per cert configuration directory DOMAINS_D (#242)
Lukas Schauer [Fri, 10 Jun 2016 21:41:59 +0000 (23:41 +0200)]
modified lighttpd example config
Domen Puncer Kugler [Tue, 7 Jun 2016 23:49:50 +0000 (00:49 +0100)]
Add Lighttpd example to wellknown.md (#224)
Lukas Schauer [Sat, 4 Jun 2016 09:12:30 +0000 (11:12 +0200)]
removed ACCOUNT_KEY and ACCOUNT_KEY_JSON from example config
Christian Tacke [Sat, 4 Jun 2016 02:15:16 +0000 (04:15 +0200)]
Include method and URL in curl error (#214)
In case curl gives an error, it's helpful to know the URL
being tried and the method. In the GET case, one can easily
retry in the shell and debug this.
Lukas Schauer [Sat, 4 Jun 2016 02:12:21 +0000 (04:12 +0200)]
changed dependency check for diff to be compatible with openbsd diff (fixes #219)
Lukas Schauer [Sat, 4 Jun 2016 01:58:07 +0000 (03:58 +0200)]
added multi-account support (fixes #92, #163)
Lukas Schauer [Thu, 26 May 2016 15:09:07 +0000 (17:09 +0200)]
initial support for configuration on per-certificate base (#105)
Lukas Schauer [Thu, 26 May 2016 14:04:01 +0000 (16:04 +0200)]
added signcsr change to CHANGELOG
Lukas Schauer [Thu, 26 May 2016 13:41:25 +0000 (15:41 +0200)]
output CA cert for signcsr command (fixes #150)
Lukas Schauer [Thu, 26 May 2016 13:06:07 +0000 (15:06 +0200)]
added CERTDIR change to CHANGELOG
Lukas Schauer [Thu, 26 May 2016 12:58:19 +0000 (14:58 +0200)]
added option to set csr-flag indicating ocsp stapling to be mandatory
Alex Macleod [Thu, 26 May 2016 13:02:15 +0000 (14:02 +0100)]
Check that the detected config is a file (#211)
Alex Macleod [Thu, 26 May 2016 12:53:01 +0000 (13:53 +0100)]
Make certificate output location configurable (#210)
Lukas Schauer [Sun, 22 May 2016 20:34:28 +0000 (22:34 +0200)]
renamed "config.sh" to "config"
Daniel Beyer [Thu, 21 Jan 2016 17:20:58 +0000 (18:20 +0100)]
Remove unneded shebang for config.sh.example
Lukas Schauer [Sun, 22 May 2016 16:50:17 +0000 (18:50 +0200)]
Update CHANGELOG
Daniel Beyer [Sun, 22 May 2016 16:49:17 +0000 (18:49 +0200)]
Make location of domains.txt configurable (#204)
This is implemented by defining ${DOMAINS_TXT} in config.sh. If not
set in config.sh, it defaults to the previously (hard-coded) location,
which is ${BASEDIR}/domains.txt.
Lukas Schauer [Sun, 22 May 2016 14:10:12 +0000 (16:10 +0200)]
release version 0.2.0
Lukas Schauer [Wed, 18 May 2016 10:19:48 +0000 (12:19 +0200)]
compatibility with "pretty" json (fixes #202)
Lukas Schauer [Mon, 16 May 2016 10:19:45 +0000 (12:19 +0200)]
updated docs/wellknown.md
Lukas Schauer [Mon, 16 May 2016 09:36:22 +0000 (11:36 +0200)]
Merge pull request #201 from glensc/patch-1
Update wellknown.md
Elan Ruusamäe [Sat, 14 May 2016 17:19:19 +0000 (20:19 +0300)]
Update wellknown.md
apache config that would work for 1.3, 2.0, 2.2 and 2.4
Lukas Schauer [Tue, 10 May 2016 20:18:10 +0000 (22:18 +0200)]
fixed tests
Lukas Schauer [Tue, 10 May 2016 20:16:35 +0000 (22:16 +0200)]
Updated changelog
Lukas Schauer [Tue, 10 May 2016 20:14:23 +0000 (22:14 +0200)]
Renew private key by default, but keep option to disable this feature
Lukas Schauer [Tue, 10 May 2016 20:11:57 +0000 (22:11 +0200)]
Revert "Removed option to reuse old private keys." (useful for HKPK, see #195)
This reverts commit
4dc99533195a91a2329fe9bee38fd9a628ef9c05 .
Lukas Schauer [Sun, 8 May 2016 13:51:11 +0000 (15:51 +0200)]
Removed option to reuse old private keys.
I have no idea why I thought reusing the keys would be a good idea
when I first started this...
Lukas Schauer [Wed, 27 Apr 2016 21:24:45 +0000 (23:24 +0200)]
removed donation button
Lukas Schauer [Tue, 26 Apr 2016 20:02:43 +0000 (22:02 +0200)]
Merge pull request #184 from gboudrias/master
wellknown.md: Clarify WELLKNOWN variable
Guillaume Boudrias [Tue, 26 Apr 2016 19:18:45 +0000 (15:18 -0400)]
Update wellknown.md
Guillaume Boudrias [Tue, 26 Apr 2016 18:07:54 +0000 (14:07 -0400)]
wellknown.md: Clarify WELLKNOWN variable
Lukas Schauer [Sun, 24 Apr 2016 17:56:31 +0000 (19:56 +0200)]
updated config example: PRIVATE_KEY is now ACCOUNT_KEY
Lukas Schauer [Sun, 24 Apr 2016 17:54:33 +0000 (19:54 +0200)]
updated changelog
Lukas Schauer [Sun, 24 Apr 2016 17:38:37 +0000 (19:38 +0200)]
renamed PRIVATE_KEY to ACCOUNT_KEY (as suggested in #183)
Lukas Schauer [Sat, 23 Apr 2016 18:53:29 +0000 (20:53 +0200)]
mktemp: use TMPDIR environment variable or use fallback to /tmp directory
Lukas Schauer [Sat, 23 Apr 2016 18:50:31 +0000 (20:50 +0200)]
reenabled build status in readme
Lukas Schauer [Sat, 23 Apr 2016 16:30:56 +0000 (18:30 +0200)]
i hate all software.
Lukas Schauer [Thu, 14 Apr 2016 23:34:23 +0000 (01:34 +0200)]
added timestamp parameter to deploy_cert function of example hook script (related to #156)
Lukas Schauer [Thu, 14 Apr 2016 15:32:05 +0000 (17:32 +0200)]
reorganized parameters for mktemp (fixes #180)
Lukas Schauer [Fri, 8 Apr 2016 22:06:22 +0000 (00:06 +0200)]
added documentation for HOOK_CHAIN config parameter
Lukas Schauer [Tue, 5 Apr 2016 18:13:13 +0000 (20:13 +0200)]
temporarily removed build status from readme (testserver is down)
Lukas Schauer [Tue, 5 Apr 2016 18:08:40 +0000 (20:08 +0200)]
make arguments to _mktemp optional (fixes #178)
Lukas Schauer [Wed, 30 Mar 2016 15:37:44 +0000 (17:37 +0200)]
add test and fix bug with upper-case domains (fixes #176)
Lukas Schauer [Tue, 29 Mar 2016 07:36:17 +0000 (09:36 +0200)]
Make temporary files identifiable (fixes #169)
Lukas Schauer [Mon, 28 Mar 2016 21:08:15 +0000 (23:08 +0200)]
fixed nginx example (fixes #173)
Lukas Schauer [Sun, 27 Mar 2016 18:34:01 +0000 (20:34 +0200)]
Update troubleshooting.md
Lukas Schauer [Sat, 26 Mar 2016 00:59:05 +0000 (01:59 +0100)]
added timestamp to parameters of deploy_cert hook and exported KEY_ALGO (as suggested in #156)
Lukas Schauer [Sat, 26 Mar 2016 00:54:06 +0000 (01:54 +0100)]
added another api limit message to troubleshooting.md
Lukas Schauer [Sat, 26 Mar 2016 00:41:40 +0000 (01:41 +0100)]
added short license information to script
Lukas Schauer [Sat, 26 Mar 2016 00:41:13 +0000 (01:41 +0100)]
moved example files to docs/examples directory
Lukas Schauer [Sat, 26 Mar 2016 00:17:32 +0000 (01:17 +0100)]
rearranged documentation, added basic troubleshooting guide
Lukas Schauer [Fri, 25 Mar 2016 19:35:01 +0000 (20:35 +0100)]
added changelog
Lukas Schauer [Wed, 23 Mar 2016 15:41:18 +0000 (16:41 +0100)]
I'm too stupid to even add a donate button.
Lukas Schauer [Wed, 23 Mar 2016 15:31:32 +0000 (16:31 +0100)]
added donation button to readme
Lukas Schauer [Tue, 22 Mar 2016 14:17:04 +0000 (15:17 +0100)]
Merge pull request #172 from bzed/master
Keep registration information as json.
Lukas Schauer [Tue, 22 Mar 2016 14:13:02 +0000 (15:13 +0100)]
making shellcheck happy with some of the code again
Lukas Schauer [Tue, 22 Mar 2016 14:00:33 +0000 (15:00 +0100)]
Merge pull request #165 from bahamat/portability
Use of 'grep -o' doesn't work on SunOS (fixes #164)
Bernd Zeimetz [Tue, 22 Mar 2016 13:04:56 +0000 (14:04 +0100)]
Keep registration information as json.
In some cases you need your registration id,
for example if you want to request a rate limit exception.
So keep the new-reg output on disk.
Brian Bennett [Wed, 9 Mar 2016 05:58:24 +0000 (05:58 +0000)]
Use of 'grep -o' doesn't work on SunOS (fixes #164)
Lukas Schauer [Sat, 19 Mar 2016 12:55:28 +0000 (13:55 +0100)]
Merge pull request #157 from lschuermann/master
Add hook for unchanged certificates.
lschuermann [Sat, 19 Mar 2016 08:07:47 +0000 (09:07 +0100)]
Change unchanged-certificate message.
Lukas Schauer [Fri, 18 Mar 2016 14:25:40 +0000 (15:25 +0100)]
Merge pull request #167 from maxisme/patch-1
Example of DNS record
Maximilian Mitchell [Tue, 15 Mar 2016 00:53:03 +0000 (00:53 +0000)]
Example of DNS record
It took me quite a long time to work out the format the DNS record needed to be in. So I have made it crystal clear here.
Lukas Schauer [Wed, 9 Mar 2016 20:45:17 +0000 (21:45 +0100)]
Merge pull request #151 from beelbrecht/spaces_in_configpath
allow spaces in path to additional configuration file
Lukas Schauer [Tue, 8 Mar 2016 21:05:18 +0000 (22:05 +0100)]
removed duplicated io handles
Lukas Schauer [Tue, 8 Mar 2016 21:03:04 +0000 (22:03 +0100)]
Merge pull request #159 from PeterDaveHello/patch-2
[doc] Update README.md