Daniel Berteaud
39308ce37d
Automatic commit of package [smeserver-letsencrypt-client] release [0.2.9-1].
...
Created by command:
/usr/bin/tito tag
2021-09-30 20:22:12 +02:00
Daniel Berteaud
0a7064d42b
Use RSA instead of EC as it's not working on EL6
2021-09-30 20:21:50 +02:00
Daniel Berteaud
120f1a86ea
Automatic commit of package [smeserver-letsencrypt-client] release [0.2.8-1].
...
Created by command:
/usr/bin/tito tag
2021-09-30 20:00:51 +02:00
Daniel Berteaud
397fa60813
Fix chain selection on el6
2021-09-30 20:00:39 +02:00
Daniel Berteaud
85837641f2
Automatic commit of package [smeserver-letsencrypt-client] release [0.2.7-1].
...
Created by command:
/usr/bin/tito tag
2021-09-30 19:44:04 +02:00
Daniel Berteaud
68f8f037be
Specify ISRG X1 as preferred chain
2021-09-30 19:43:44 +02:00
Daniel Berteaud
fdc1672b7e
Automatic commit of package [smeserver-letsencrypt-client] release [0.2.6-1].
...
Created by command:
/usr/bin/tito tag
2020-10-23 14:51:17 +02:00
Daniel Berteaud
8dfda4711e
Don't restrict ACME challenges to the clear text vhost
...
There are cases (like when running behind a proxypass) where it's also needed on the SSL vhost
2020-10-23 14:50:40 +02:00
Daniel Berteaud
cc2d9e31fd
Cleanup spec file for tito
2020-10-23 14:48:25 +02:00
Daniel Berteaud
2b5f6dafe3
Automatic commit of package [smeserver-letsencrypt-client] release [0.2.5-1].
...
Created by command:
/usr/bin/tito tag --use-version 0.2.5
2020-07-15 10:04:06 +02:00
Daniel Berteaud
b3dfeb0a78
Automatic commit of package [smeserver-letsencrypt-client] release [0.2.4-1].
...
Created by command:
/usr/bin/tito tag
2020-07-15 09:31:50 +02:00
Daniel Berteaud
b336b895d1
Configure tito
2020-07-15 09:31:22 +02:00
Daniel Berteaud
2f54ef1fe6
Initialized to use tito.
2020-07-15 09:30:10 +02:00
Daniel Berteaud
be54e7b798
Switch to the v2 API
2020-07-15 09:29:56 +02:00
Daniel Berteaud
451e36d58e
Spec file update
2017-05-04 16:20:18 +02:00
Daniel Berteaud
708a1b0c11
Expand cron file in bootstrap-console-save
2017-05-04 15:23:45 +02:00
Daniel Berteaud
b92cac74ca
Spec file update
2017-03-15 10:31:50 +01:00
Daniel Berteaud
d3f400a56b
Set default URI to prod
2017-03-15 09:52:54 +01:00
Daniel Berteaud
6e3b96982c
Spec file update
2016-11-23 09:19:03 +01:00
Daniel Berteaud
6ef45f251a
Send the 1 command to imap and not imaps to update imapd.pem on SME 8
2016-11-23 09:05:41 +01:00
Daniel Berteaud
d8047b0ce1
Spec file update
2016-10-24 15:51:58 +02:00
Daniel Berteaud
c8a056ab56
Rename cron template metadata
2016-10-24 12:20:14 +02:00
Daniel Berteaud
a611e3fa84
Spec file update
2016-09-15 18:42:04 +02:00
Daniel Berteaud
ad07400004
Update hook wrapper path
2016-09-15 12:40:29 +02:00
Daniel Berteaud
d6a984d862
Update well-known directory
2016-09-15 12:35:29 +02:00
Daniel Berteaud
b9105310d9
Fix migrating cert path
2016-09-15 12:35:03 +02:00
Daniel Berteaud
ded0c3eb5e
Adapt for the rename to dehydrated
2016-09-15 11:37:57 +02:00
Daniel Berteaud
fe296869b3
Spec file update
2016-06-27 17:40:03 +02:00
Daniel Berteaud
789d868e89
Fix deploy hook on sme8
...
There was two problems: the manual expand-template for the pem file was wrong, and the smeserver-letsencrypt-client rpm provided the /etc/e-smith/event/ssl-update event. So the test for it not existing was always false. But this event did nothing except expand a single config template, no ssl cert was being updated
2016-06-27 17:37:36 +02:00
Daniel Berteaud
71628a7621
Spec file update
2016-06-24 12:34:37 +02:00
Daniel Berteaud
39d2e30398
Fix cron syntax for random sleep command
2016-06-24 12:30:33 +02:00
Daniel Berteaud
d92beb01b1
Spec file update
2016-06-06 19:33:19 +02:00
Daniel Berteaud
73a2dbcaf8
Always add letsencrypt alias
...
so if a domain has letsencrypt support disabled, but has at least one hostname attached to this domain with letsencrypt enabled, it can validate its challenge
2016-06-06 19:19:58 +02:00
Daniel Berteaud
2417beb270
Don't force Letsencrypt support on primary domain
2016-06-06 18:57:03 +02:00
Daniel Berteaud
8a58ddb102
Add a wrapper script for letsencrypt.sh
...
This wrapper support a new ProxyPassACMEChallengesDisableOnRenew prop which allows disabling ACME challenge proxypass only during the renewal
2016-06-06 18:44:50 +02:00
Daniel Berteaud
dc0f2ff539
Spec file update
2016-05-31 17:05:26 +02:00
Daniel Berteaud
e646cd1705
Set DOMAINS_TXT in config
2016-05-31 15:42:50 +02:00
Daniel Berteaud
a9387cd1bd
Rename config.sh to config
2016-05-31 15:40:48 +02:00
Daniel Berteaud
dbc8bcd902
Define %clean before %files
...
So the epel macro are not used
2016-04-11 16:38:43 +02:00
Daniel Berteaud
8604070614
Spec file update
2016-04-11 16:28:02 +02:00
Daniel Berteaud
d772e84feb
Use chain.pem instead of fullchain.pem
...
As some older OpenSSL (like the one in Debian 7) don't like the final cert being in the intermediate chain
2016-04-11 16:26:41 +02:00
Daniel Berteaud
5959177ccb
Spec file update
2016-01-31 11:38:24 +01:00
Daniel Berteaud
5467cea2c2
Fix cron template
2016-01-31 11:31:36 +01:00
Daniel Berteaud
38e228cb49
Typo in templates name
2016-01-31 11:23:45 +01:00
Daniel Berteaud
ddb4abb9d4
Turn RevokeOldCertificates on by default
2016-01-31 11:16:44 +01:00
Daniel Berteaud
708789e893
Expand cron.daily/letsencrypt instead of crontab
2016-01-31 11:14:57 +01:00
Daniel Berteaud
a95bccf47f
Make Renewal configurable
2016-01-31 10:51:28 +01:00
Daniel Berteaud
bae49f049e
Revoke old certs in a separated script
...
We cannot call letsencrypt.sh from a hook script, as there's a lock file
2016-01-31 10:48:57 +01:00
Daniel Berteaud
0540516807
Spec file update
2016-01-29 18:09:49 +01:00
Daniel Berteaud
bae34ca9f1
Better AltName selection and deduplication
2016-01-29 16:46:31 +01:00