You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

75 lines
3.4 KiB

6 years ago
6 years ago
6 years ago
  1. [//]: # (Copyright 2019 Rodolphe Bréard <rodolphe@breard.tf>)
  2. [//]: # (Copying and distribution of this file, with or without modification,)
  3. [//]: # (are permitted in any medium without royalty provided the copyright)
  4. [//]: # (notice and this notice are preserved. This file is offered as-is,)
  5. [//]: # (without any warranty.)
  6. # Changelog
  7. All notable changes to this project will be documented in this file.
  8. The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
  9. and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
  10. ## [0.4.0] - 2019-05-08
  11. ### Added
  12. - Man pages.
  13. - The project can now be built and installed using `make`.
  14. - The post-operation hooks now have access to the `is_success` template variable.
  15. - Challenge hooks now have the `is_clean_hook` template variable.
  16. - An existing certificate will be renewed if more domains have been added in the configuration.
  17. ### Changed
  18. - Unknown configuration fields are no longer tolerated.
  19. ### Removed
  20. - In challenge hooks, the `algorithm` template variable has been removed.
  21. ### Fixed
  22. - In some cases, ACMEd was unable to parse a certificate's expiration date.
  23. ## [0.3.0] - 2019-04-30
  24. ### Added
  25. - tacd, the TLS-ALPN-01 validation daemon.
  26. - An account object has been added in the configuration.
  27. - In the configuration, hooks now have a mandatory `type` variable.
  28. - It is now possible to declare hooks to clean after the challenge validation hooks.
  29. - The CLI `--root-cert` option has been added.
  30. - Failure recovery: HTTPS requests rejected by the server that are recoverable, like the badNonce error, are now retried several times before being considered a hard failure.
  31. - The TLS-ALPN-01 challenge is now supported. The proof is a string representation of the acmeIdentifier extension. The self-signed certificate itself has to be built by a hook.
  32. ### Changed
  33. - In the configuration, the `email` certificate field has been replaced by the `account` field which matches an account object.
  34. - The format of the `domain` configuration variable has changed and now includes the challenge type.
  35. - The `token` challenge hook variable has been renamed `file_name`.
  36. - The `challenge_hooks`, `post_operation_hooks`, `file_pre_create_hooks`, `file_post_create_hooks`, `file_pre_edit_hooks` and `file_post_edit_hooks` certificate variables has been replaced by `hooks`.
  37. - The logs has been purged from many useless debug and trace entries.
  38. ### Removed
  39. - The DER storage format has been removed.
  40. - The `challenge` certificate variables has been removed.
  41. ## [0.2.1] - 2019-03-30
  42. ### Changed
  43. - The bug that prevented from requesting more than two certificates has been fixed.
  44. ## [0.2.0] - 2019-03-27
  45. ### Added
  46. - The `kp_reuse` flag allow to reuse a key pair instead of creating a new one at each renewal.
  47. - It is now possible to define hook groups that can reference either hooks or other hook groups.
  48. - Hooks can be defined when before and after a file is created or edited (`file_pre_create_hooks`, `file_post_create_hooks`, `file_pre_edit_hooks` and `file_post_edit_hooks`).
  49. - It is now possible to send logs either to syslog or stderr using the `--to-syslog` and `--to-stderr` arguments.
  50. ### Changed
  51. - `post_operation_hook` has been renamed `post_operation_hooks`.
  52. - By default, logs are now sent to syslog instead of stderr.
  53. - The process is now daemonized by default. It is possible to still run it in the foreground using the `--foregroung` flag.