Daniel Berteaud
8dfda4711e
Don't restrict ACME challenges to the clear text vhost
...
There are cases (like when running behind a proxypass) where it's also needed on the SSL vhost
4 years ago
Daniel Berteaud
cc2d9e31fd
Cleanup spec file for tito
4 years ago
Daniel Berteaud
2b5f6dafe3
Automatic commit of package [smeserver-letsencrypt-client] release [0.2.5-1].
...
Created by command:
/usr/bin/tito tag --use-version 0.2.5
4 years ago
Daniel Berteaud
b3dfeb0a78
Automatic commit of package [smeserver-letsencrypt-client] release [0.2.4-1].
...
Created by command:
/usr/bin/tito tag
4 years ago
Daniel Berteaud
b336b895d1
Configure tito
4 years ago
Daniel Berteaud
2f54ef1fe6
Initialized to use tito.
4 years ago
Daniel Berteaud
be54e7b798
Switch to the v2 API
4 years ago
Daniel Berteaud
451e36d58e
Spec file update
8 years ago
Daniel Berteaud
708a1b0c11
Expand cron file in bootstrap-console-save
8 years ago
Daniel Berteaud
b92cac74ca
Spec file update
8 years ago
Daniel Berteaud
d3f400a56b
Set default URI to prod
8 years ago
Daniel Berteaud
6e3b96982c
Spec file update
8 years ago
Daniel Berteaud
6ef45f251a
Send the 1 command to imap and not imaps to update imapd.pem on SME 8
8 years ago
Daniel Berteaud
d8047b0ce1
Spec file update
8 years ago
Daniel Berteaud
c8a056ab56
Rename cron template metadata
8 years ago
Daniel Berteaud
a611e3fa84
Spec file update
8 years ago
Daniel Berteaud
ad07400004
Update hook wrapper path
8 years ago
Daniel Berteaud
d6a984d862
Update well-known directory
8 years ago
Daniel Berteaud
b9105310d9
Fix migrating cert path
8 years ago
Daniel Berteaud
ded0c3eb5e
Adapt for the rename to dehydrated
8 years ago
Daniel Berteaud
fe296869b3
Spec file update
9 years ago
Daniel Berteaud
789d868e89
Fix deploy hook on sme8
...
There was two problems: the manual expand-template for the pem file was wrong, and the smeserver-letsencrypt-client rpm provided the /etc/e-smith/event/ssl-update event. So the test for it not existing was always false. But this event did nothing except expand a single config template, no ssl cert was being updated
9 years ago
Daniel Berteaud
71628a7621
Spec file update
9 years ago
Daniel Berteaud
39d2e30398
Fix cron syntax for random sleep command
9 years ago
Daniel Berteaud
d92beb01b1
Spec file update
9 years ago
Daniel Berteaud
73a2dbcaf8
Always add letsencrypt alias
...
so if a domain has letsencrypt support disabled, but has at least one hostname attached to this domain with letsencrypt enabled, it can validate its challenge
9 years ago
Daniel Berteaud
2417beb270
Don't force Letsencrypt support on primary domain
9 years ago
Daniel Berteaud
8a58ddb102
Add a wrapper script for letsencrypt.sh
...
This wrapper support a new ProxyPassACMEChallengesDisableOnRenew prop which allows disabling ACME challenge proxypass only during the renewal
9 years ago
Daniel Berteaud
dc0f2ff539
Spec file update
9 years ago
Daniel Berteaud
e646cd1705
Set DOMAINS_TXT in config
9 years ago
Daniel Berteaud
a9387cd1bd
Rename config.sh to config
9 years ago
Daniel Berteaud
dbc8bcd902
Define %clean before %files
...
So the epel macro are not used
9 years ago
Daniel Berteaud
8604070614
Spec file update
9 years ago
Daniel Berteaud
d772e84feb
Use chain.pem instead of fullchain.pem
...
As some older OpenSSL (like the one in Debian 7) don't like the final cert being in the intermediate chain
9 years ago
Daniel Berteaud
5959177ccb
Spec file update
9 years ago
Daniel Berteaud
5467cea2c2
Fix cron template
9 years ago
Daniel Berteaud
38e228cb49
Typo in templates name
9 years ago
Daniel Berteaud
ddb4abb9d4
Turn RevokeOldCertificates on by default
9 years ago
Daniel Berteaud
708789e893
Expand cron.daily/letsencrypt instead of crontab
9 years ago
Daniel Berteaud
a95bccf47f
Make Renewal configurable
9 years ago
Daniel Berteaud
bae49f049e
Revoke old certs in a separated script
...
We cannot call letsencrypt.sh from a hook script, as there's a lock file
9 years ago
Daniel Berteaud
0540516807
Spec file update
9 years ago
Daniel Berteaud
bae34ca9f1
Better AltName selection and deduplication
9 years ago
Daniel Berteaud
4fb5dd3018
Rename le-update to letsencrypt-update
9 years ago
Daniel Berteaud
752f3d3a41
Add a Uri prop to choose between production or staging CA
...
And default to staging
9 years ago
Daniel Berteaud
b088baa65d
String must be quoted
9 years ago
Daniel Berteaud
6651e5dcc6
Cron syntax was wrong
9 years ago
Daniel Berteaud
9163bbd3c3
Send stdout and stderr in logs, but print stderr also
...
So a failed cron job will be emailed to the admin
9 years ago
Daniel Berteaud
233c6e4945
Add some sanity check to args passed to hook handler
9 years ago
Daniel Berteaud
eedcb47c0b
Call le_hooks.sh
9 years ago