From a15e8435dac9034b037b6f4e958d614e6f7915e4 Mon Sep 17 00:00:00 2001 From: Phil Porada Date: Wed, 3 May 2023 11:52:21 -0400 Subject: [PATCH] Begin implementing new flags for ACME Renewal Information (ARI) --- acme.sh | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) diff --git a/acme.sh b/acme.sh index d5caee4d..8fbc16d0 100755 --- a/acme.sh +++ b/acme.sh @@ -223,7 +223,7 @@ _printargs() { } _dlg_versions() { - echo "Diagnosis versions: " + echo "Diagnose versions: " echo "openssl:$ACME_OPENSSL_BIN" if _exists "${ACME_OPENSSL_BIN:-openssl}"; then ${ACME_OPENSSL_BIN:-openssl} version 2>&1 @@ -6939,6 +6939,8 @@ Parameters: --syslog <0|3|6|7> Syslog level, 0: disable syslog, 3: error, 6: info, 7: debug. --eab-kid Key Identifier for External Account Binding. --eab-hmac-key HMAC key for External Account Binding. + --ari-enable <0|1> Boolean to check the renewalInfo endpoint when evaluating whether a renewal is necessary, 0: false/disabled, 1: true/enabled. + --ari-wait-duration The time in seconds to wait for the renewal window suggested by the renewalInfo endpoint. These parameters are to install the cert to nginx/apache or any other server after issue/renew a cert: @@ -7386,6 +7388,14 @@ _process() { --set-default-chain) _CMD="setdefaultchain" ;; + --ari-enable) + _ari_enable="${2}" + ARI_ENABLE="$_ari_enable" + shift + ;; + --ari-sleep-duration) + _CMD="setdef" + ;; -d | --domain) _dvalue="$2"