plantroon
/
acme.sh
mirror of https://github.com/plantroon/acme.sh.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
5,177 Commits 5 Branches 23 Tags 6.7 MiB
Commit Graph

1019 Commits

Author SHA1 Message Date
Klaus Frank 53117b2f4c Fix missing HTTP_HEADER for _get with wget 
Save http header to file for _get with wget.
 2022-08-24 19:34:36 +02:00
Monius b95f836256 final try 2022-08-23 06:30:09 +08:00
Monius 5a604bfdee shfmt check? 2022-08-22 15:16:30 +08:00
Monius 6502a71083 fix, but remove debug info 2022-08-22 05:26:12 +08:00
Monius f2634b44cd add EOF, if $__conf not end with one 2022-08-21 12:26:37 +08:00
Monius dcf9c467c3 fix issue, when profile not end with newline 2022-08-20 19:37:51 +08:00
neil 7169060425 fix https://github.com/acmesh-official/acme.sh/issues/4248#issuecomment-1217378906 2022-08-20 10:54:17 +08:00
neil 039e4c662d rename the csr/key file if the cert is revoked. 2022-08-18 21:10:38 +08:00
neilpang 204e5f4418 fix https://github.com/acmesh-official/acme.sh/issues/4232 2022-08-08 18:22:07 +08:00
neil d0c2fb9761 fix https://github.com/acmesh-official/acme.sh/issues/3833#issuecomment-1203652970 2022-08-03 23:07:13 +08:00
neil 328dbd57d4 fix for solaris 2022-07-24 16:20:44 +08:00
neil 9c757bbe6e
Update acme.sh 2022-07-07 20:01:43 +08:00
Ian Wienand be7840c827 Exit with separate failure if in DNS manual mode 
In our environment we use DNS manual mode and take the TXT record
output of acme.sh and process it with Ansible to install the records
(then we call renew later when the records have been pushed to the DNS
servers by a whole bunch of other bits).

One problem is that after getting/showing the TXT records, acme.sh
always returns 1.  This makes it difficult to tell if there is
actually an error condition.

Since we have set the manual-mode flag, not installing the DNS records
is an expected correct result.  This returns a separate error code for
this situation (3), which can be distinguished in automation.
 2022-07-06 06:20:28 +10:00
neilpang 7746042adc fix https://github.com/acmesh-official/acme.sh/issues/4160 
fix https://github.com/acmesh-official/acme.sh/issues/4160
 2022-06-30 23:07:18 +08:00
neilpang 5440fcdf54 check the file path before copying 2022-06-01 18:05:51 +08:00
PM Extra f90cbb636a fix format 2022-05-14 22:41:59 +08:00
PM Extra 9fb5bb620d refact ssh hook to use deploy config 2022-05-14 22:28:02 +08:00
Clark Boylan b376dfa1e6 Fix Le_Keylength checks during renewals 
When performing renewals acme.sh checks key length values to determine
if a new key should be created with createDomainKey(). However, older
acme.sh stored key length as an empty value if the default of 2048 was
desired. Now it is explicit and the explict check of 2048 against "" is
causing createDomainKey() to always be called with fails without
--force.

Fix this by converting the keylength value to 2048 if an empty string is
returned from the config file. acme.sh will then write out 2048 updating
old keys and configs to the explicit version.

Issue: 4077
 2022-05-10 10:42:19 -07:00
neil e1d7a6b9ac fix renew server 2022-05-10 22:22:13 +08:00
neil 38778f8adc fix renew server 2022-05-10 22:22:12 +08:00
neil 8b7a86bd17 support "server" for renew and renewall 2022-05-10 22:22:12 +08:00
neilpang 619bae745b start 3.0.5 2022-05-10 22:22:12 +08:00
neilpang 8d783e8e1f fix https://github.com/acmesh-official/acme.sh/issues/4069 2022-05-06 18:04:29 +08:00
neilpang f03098551e start 3.0.4 2022-05-04 18:44:37 +08:00
neil 7f9074adbf fix format 2022-05-03 21:35:26 +08:00
neil 64847afc3f save the default key length 2022-05-03 21:19:29 +08:00
neil ef8a199a5a
Merge pull request #4057 from mrakopes/master 
issue 3007 - fix base64 decoding logic for single- and multi-line encoded string
 2022-04-29 09:25:39 +08:00
mrakopes 9b6f775276 fix base64 decoding logic for single- ane multi-line encoded string 2022-04-28 13:25:22 +02:00
neilpang 69040dd668 fix format 2022-04-28 18:09:26 +08:00
neilpang 14b5914233 fix renew bug 2022-04-28 18:06:07 +08:00
neil 3075b4515a
Merge pull request #4045 from axelhahn/4044-use-challenge-alias-false 
handle challenge-alias "false"
 2022-04-21 16:35:29 +08:00
neil 39bc417706
Update acme.sh 2022-04-21 07:02:53 +08:00
Hahn Axel (hahn) 019a7bd66b handle challenge-alias "false" 2022-04-20 16:03:36 +02:00
neil 4d89ce5d50 read csr with empty subject 
https://github.com/acmesh-official/acme.sh/issues/4024
 2022-04-20 09:14:53 +08:00
Bruce Lam 3e8d9a1987 added: ipv6 identifier support 2022-04-20 08:23:22 +08:00
neilpang 2c28d6b10c fix for renew server 2022-04-13 20:20:28 +08:00
neilpang 6be2bb2289 Update acme.sh 
revert only when there is no `--server` specified.
 2022-04-08 22:28:21 +08:00
neilpang 439defca42 switch from staging api to production api 
https://github.com/acmesh-official/acme.sh/issues/2401
 2022-04-08 22:15:26 +08:00
neilpang 6a90856f0e don't renew cert if valid-to is set to an absolute date 
don't renew cert if valid-to is set to an absolute date
 2022-04-05 17:05:33 +08:00
neilpang 225adcc836 fix renewal for validto 
fix renewal for validto
 2022-04-03 21:58:41 +08:00
neilpang 0f607413d0 fix for solaris time format 2022-04-03 20:05:30 +08:00
neilpang b49999721c Update acme.sh 2022-04-01 21:58:29 +08:00
neilpang de4c4eedd8 Support NotBefore and NotAfter 
Add `--valid-from` and `--valid-to`:
https://github.com/acmesh-official/acme.sh/wiki/Validity
 2022-04-01 21:22:42 +08:00
neilpang d53262fab6 fix update account 
fix https://github.com/acmesh-official/acme.sh/issues/4009
 2022-03-31 09:35:32 +08:00
neilpang 532e44bcea normalize domains 
fix https://github.com/acmesh-official/acme.sh/issues/4005
 2022-03-30 23:37:38 +08:00
neilpang fb5091a388 support Google ACME server 
see: https://github.com/acmesh-official/acme.sh/wiki/Server
 2022-03-30 22:47:12 +08:00
neilpang 0d05f9ba80 Update acme.sh 
fix https://github.com/acmesh-official/acme.sh/issues/4001
 2022-03-27 12:08:24 +08:00
neilpang af193291fa Update acme.sh 
fix https://github.com/acmesh-official/acme.sh/issues/3127#issuecomment-1030742187
 2022-02-06 16:17:04 +08:00
neilpang 9ec4b59afb start v3.0.3 
start v3.0.3
 2022-02-05 21:28:07 +08:00
neilpang 36752cb6a8 Update acme.sh 
fix zerossl endpoint
 2022-02-04 13:49:58 +08:00
neil 90b65c6618 fix https://github.com/acmesh-official/acme.sh/issues/3898 
https://github.com/acmesh-official/acme.sh/issues/3898
 2022-01-27 18:00:44 +08:00
neil 188274277a fix https://github.com/acmesh-official/acme.sh/issues/3883 2022-01-11 17:16:51 +08:00
neil e07795e8f0 fix https://github.com/acmesh-official/acme.sh/issues/3883 2022-01-11 16:56:19 +08:00
neil 856e77053e Merge branch '3870' into dev 2022-01-10 16:29:44 +08:00
neil e67d26caeb fix https://github.com/acmesh-official/acme.sh/issues/3845#issuecomment-999367478 2022-01-08 19:58:49 +08:00
neil 86c3fa0df0 remove retry for get and post 2022-01-08 19:51:04 +08:00
neil d43b587d17 fix https://github.com/acmesh-official/acme.sh/issues/3870 2022-01-07 22:06:18 +08:00
Joel Pearson 0727f7054b Allow optional "NEW" in CSR header and footer 
When generating a CSR in Windows it seems to create a CSR header that looks like "-----BEGIN NEW CERTIFICATE REQUEST-----", but the addition of "NEW" breaks the parsing of the CSR. Making "NEW " optional fixes the problem.

Apparently certbot is tolerant of both forms, see: https://community.letsencrypt.org/t/error-parsing-certificate-request-resolved/40039/6 for more information.
 2022-01-06 17:41:42 +08:00
neilpang c39e6c4423 add `--info` command to show the global configs or domain configs. 
https://github.com/acmesh-official/acme.sh/issues/2444
 2022-01-06 17:41:42 +08:00
neilpang 1566656af3 fix https://github.com/acmesh-official/acme.sh/issues/3869 2022-01-06 17:41:42 +08:00
neilpang 737eba57bd send notifications for renew command 
https://github.com/acmesh-official/acme.sh/issues/3869#issuecomment-1003546762
 2022-01-06 17:41:41 +08:00
neilpang 4f386663e7 fix for OpenBSD7 
https://github.com/acmesh-official/acme.sh/issues/3833
 2022-01-06 17:41:40 +08:00
neilpang 18e4d270d9 fix https://github.com/acmesh-official/acme.sh/issues/3806 2021-11-13 15:23:32 +08:00
neil f63409eed9 fix https://github.com/acmesh-official/acme.sh/issues/1559 2021-11-06 12:27:50 +08:00
neil b8bfb5a56c fix format 2021-11-06 11:28:11 +08:00
neil 3f58823430 fix ip cert 2021-11-06 11:26:06 +08:00
neil e488220bfc fix for solaris 2021-11-06 11:16:41 +08:00
neil e6e0771496 fix for ip cert alpn mode 2021-11-06 11:16:40 +08:00
neil fe77d43fa0 fix _deactivate for ip cert 2021-11-06 11:16:40 +08:00
neil 6ae8d10132 support ip cert: rfc https://tools.ietf.org/html/rfc8738 2021-11-06 11:15:10 +08:00
neil 7d249b6d3b start 3.0.2 2021-11-06 09:52:21 +08:00
neilpang 38a067e203 fix https://github.com/acmesh-official/acme.sh/issues/3752 2021-10-12 20:55:11 +08:00
Phil Krylov 40e8c5e2b0
Don't use global variable as local in recursion context 
```nginx
include conf.d/*;
include sites-enabled/*;
```
In this situation, after the first recursive `_checkConf` invocation 4 lines below, `$_c_file` does not contain what you expect anymore, and the second lookup checks for `conf.d/sites-enabled/*` which is obviously wrong.
 2021-10-08 18:24:21 +02:00
neil 84fe6654cc fix for https://github.com/acmesh-official/acme.sh/issues/3717 2021-10-03 20:59:55 +08:00
neil d4e1899747 support "--set-default-chain", fix https://github.com/acmesh-official/acme.sh/issues/3717 2021-10-03 19:02:45 +08:00
neil b335840f97
Merge pull request #3657 from Sp1l/extend_pre_hook 
Make domain names available to pre hook
 2021-08-22 11:01:02 +08:00
neilpang 6bdf689d0f fix https://github.com/acmesh-official/acme.sh/issues/3660 2021-08-15 08:52:55 +08:00
Bernard Spil e164362069 Make domain names available to pre hook 
Export Le_Domains and Le_Alt so your pre-hook script can run additional checks.

Allows running checks on the domain names before the first call to the ACME API. Thereby not counting against the rate-limit when an issue is going to be problematic.

Supersedes:	#3288
 2021-08-10 12:36:29 +02:00
neilpang ccfd907914 fix https://github.com/acmesh-official/acme.sh/issues/3649 2021-08-07 21:06:05 +08:00
neilpang 5a44e63cad fix nginx mode 
https://github.com/acmesh-official/acme.sh/issues/3648#issuecomment-894045613
 2021-08-06 21:22:10 +08:00
neilpang 06580bf0e4 fix https://github.com/acmesh-official/acme.sh/issues/1914#issuecomment-893188476 2021-08-05 20:12:42 +08:00
jonwltn 6b97dc6734
Minor output formatting changes. 2021-08-04 10:44:48 -07:00
neilpang 2b5e2d4760 fix nginx mode 2021-08-01 15:44:14 +08:00
neilpang 89abad7980 fix https://github.com/acmesh-official/acme.sh/issues/3635 2021-08-01 13:11:52 +08:00
neilpang 5cc1d9521c fix https://github.com/acmesh-official/acme.sh/issues/3624#issuecomment-887689325 2021-07-28 22:14:54 +08:00
neil 655e34b166 minor, clean links for renewal 2021-07-24 16:23:43 +08:00
neilpang 103810ce20 add info 2021-07-20 21:05:17 +08:00
neil d70b759cb9 format 2021-07-15 22:47:20 +08:00
neil ae3dda0f8f add retry for get() and post() 2021-07-15 22:21:32 +08:00
neil dcc50093bb fix https://github.com/acmesh-official/acme.sh/issues/3600 2021-07-12 21:46:08 +08:00
jonwltn a0c5d17539
Fix the URL for checking DNSPod availability. 2021-07-02 09:23:45 -07:00
neilpang 2d07185300 use letsencrypt server to renew certs if no server was saved. 2021-06-28 21:16:32 +08:00
neilpang e0def66959 fix for compatiblity 2021-06-27 11:29:51 +08:00
neilpang fb73dceab0 fix format 2021-06-25 22:46:55 +08:00
neilpang 13fd83e0ba fix revoke 2021-06-25 22:44:23 +08:00
neilpang 13ab98440c fix initapi 2021-06-25 22:23:17 +08:00
neilpang 1752004301 fix deactivate 2021-06-25 22:16:16 +08:00
neilpang 536a5f7cff fix deactivate 2021-06-25 21:59:38 +08:00
neilpang 29fe1c86da fix initapi 2021-06-24 23:21:10 +08:00
neilpang 9daeae1695 remove unnecessary check 2021-06-24 20:45:15 +08:00