andrewheberle
0a4e61c1dd
Readme update
6 years ago
andrewheberle
31d9ba7e02
Change default for reload
6 years ago
andrewheberle
8d348954a7
Whitepspace
7 years ago
andrewheberle
7d19d784df
Update cert suffix for bundles .ocsp generation
7 years ago
andrewheberle
733b4e0a34
Fix Le_Keylength case
7 years ago
andrewheberle
08d29a8342
Fix return from reload
7 years ago
andrewheberle
675e2d25d6
update for new haproxy deploy vars
7 years ago
andrewheberle
ba20af48d3
Support HAPROXY_DEPLOY_PEM_PATH
Adds compatibility to original haproxy deploy hook while still allowing custom PEM file name (via HAPROXY_DEPLOY_PEM_NAME)
7 years ago
andrewheberle
707e053949
whitespace fixes
7 years ago
andrewheberle
c47e67e52c
Fix variable name
7 years ago
andrewheberle
3a95bfb699
Document updated haproxy deploy hook
7 years ago
andrewheberle
6567bb4c12
Update haproxy deploy hook
Add functionality to add OCSP stapling info (.ocsp file), issuer (.issuer file) and multi-cert bundles (suffix on pem file based on key type).
This also corrects the order of key, certificate and intermediate in the PEM file, which although HAProxy does not seem to care, was incorrect in the prior version.
7 years ago
Daniel Watrous
c9818ea2c4
add documentation for reload command
7 years ago
Daniel Watrous
afe5cb588d
update for POSIX compliance
7 years ago
Daniel Watrous
e9e999542d
add reload
7 years ago
Daniel Watrous
5f593994c7
remove more whitespace (trying to get TravisCI working)
7 years ago
Daniel Watrous
ec73aeba16
remove whitespace
7 years ago
Daniel Watrous
7573e560b6
Add conditional check to ensure path is provided
7 years ago
Daniel Watrous
1eae73105a
add docs for HAProxy deployment
7 years ago
Daniel Watrous
360dc140ea
implement basic haproxy deploy
HAProxy requires the certificate chain and key to be concatenated and placed somewhere (can be anywhere). This script expects a single environment variable with the path where the concatenated PEM file should be written
7 years ago
Bob Belnap
87a8dda955
add chain cert
7 years ago
Alex
6b15cf3f72
Remove template text
7 years ago
Jakub Wilk
2d7b9817cb
Fix typos
7 years ago
Bob Belnap
2c45f27356
rename deploy hook vault to vault_cli
7 years ago
Bob Belnap
c86755f1ab
format fix
7 years ago
Bob Belnap
b8418ced44
syntax fixes
7 years ago
Jose Luis Duran
fac0beaa0a
Add support for strongSwan deploys in FreeBSD
Related to 8ea800205c
7 years ago
Bob Belnap
90e587a974
add vault deploy hook script
7 years ago
hiska
8ea800205c
support both debian and redhat
7 years ago
hiska
c924e7c537
remove "return 0"
7 years ago
hebbet
372f691fd6
unify headlines
unify headlines in deploy readme
7 years ago
hiska
afe3283c53
Update README.md
7 years ago
hiska
641a2895a6
Create strongswan.sh
7 years ago
Santeri Kannisto
acf117584b
#1042
Apparently UAPI does not return any error code, just JSON output that has a string "status: 0" whenever the command fails.
7 years ago
Manuel Friedli
2fc0225bc9
Make command line example consistent with env variable example.
7 years ago
Santeri Kannisto
a9726fde19
1 cert per domain
for cpanel_uapi
7 years ago
Santeri Kannisto
f81d4033fa
One cert per domain
Deploy works only for the first domain
7 years ago
Manuel Friedli
1e30718df6
Try and work around shellcheck error SC2039: In POSIX sh, printf -%s-- is undefined.
7 years ago
Manuel Friedli
72e1eb88d9
Don't use individual redirects, but do it all in one block.
7 years ago
Manuel Friedli
8ee5ede834
Fix more formatting errors
7 years ago
Manuel Friedli
bd8b1a2501
Don't use wget directly, but instead use _get and _post.
7 years ago
Manuel Friedli
a098167bdb
Fix more formatting errors
7 years ago
Santeri
e52304edb4
cpanel_uapi
tried to make it a bit less confusing
7 years ago
Manuel Friedli
6cb5377d73
Fix bugs and more/new formatting errors.
7 years ago
Manuel Friedli
a3a92ff1df
Fix formatting errors.
7 years ago
Manuel Friedli
103fa959cb
Typo
7 years ago
Manuel Friedli
b6d48b7a14
Update README.md for the deploy hooks.
7 years ago
Manuel Friedli
412e4e6cf9
Add acknowledgement note
7 years ago
Manuel Friedli
e6f81173a3
Delete auto-backup file
7 years ago
Manuel Friedli
d50281453d
Add --no-check-certificate option to wget, or else the initial deployment won't work because there isn't a valid certificate installed on the router yet.
7 years ago