Mirror
/
acmed
mirror of https://github.com/breard-r/acmed.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Commit Graph

  • ff1b6d1aa7 Create an abstraction around the certificate Rodolphe Breard 2019-06-08 16:16:01 +0200
  • 63e35712fe Create an abstraction around public and private keys Rodolphe Breard 2019-06-07 19:22:26 +0200
  • f2be8baebe ACMEd 0.6.0 v0.6.0 Rodolphe Breard 2019-06-05 15:35:17 +0200
  • 78738c16a6 Update dependencies Rodolphe Breard 2019-06-04 15:30:09 +0200
  • 1e6aba52dc Add rate limits for HTTPS requests Rodolphe Breard 2019-06-04 15:20:48 +0200
  • dfed0d9c0b Remove some useless stuff from the default config file Rodolphe Breard 2019-06-01 17:55:12 +0200
  • 1cffa14c20 Renew certificates in parallel Rodolphe Breard 2019-06-01 17:16:01 +0200
  • 08c9410028 Improve the logging format In order to renew different certificate at the same time, log messages must display which certificate they are referring to. Rodolphe Breard 2019-06-01 16:01:18 +0200
  • cd5f8d9e0d Improve some comments Sometimes, grep is used to find the TODO comments. Without the proper explanation, it is hard to know what it refers to (-C / --context may produce a too large output). Rodolphe Breard 2019-06-01 11:53:57 +0200
  • fc1b103a85 Invite people to fix English-related issues Rodolphe Breard 2019-05-29 12:07:25 +0200
  • 4303ed61d7 Allow to give a file path in a hook's stdin There is use-cases where a command's standard input should be filled with a file's content. In order to stay consistent with the names of the other fields, `stdin` is now the field which accepts such a path. `stdin_str` has been created in order to also support the use of a raw string. Rodolphe Breard 2019-05-29 11:54:17 +0200
  • 196306b79f Format the MIT license Rodolphe Breard 2019-05-29 10:42:52 +0200
  • 89660b6cd2 Improve the --version option Rodolphe Breard 2019-05-26 01:37:49 +0200
  • 75f79bcef5 Clean the hooks right after the current challenge has been validated Cleaning hooks after the certificate has been retrieved is a mistake since a failure somewhere in the process will prevent all called hook to be cleaned. With the current implementation, only the currently failed hook is left without being cleaned. Rodolphe Breard 2019-05-25 23:08:40 +0200
  • b31a689b26 Fix the http-01-echo default hook Rodolphe Breard 2019-05-25 23:04:57 +0200
  • 6d8d1eb529 Add a CONTRIBUTING.md file Rodolphe Breard 2019-05-25 18:06:14 +0200
  • 9c497994d8 Add an option to stop or continue after a failed hook Rodolphe Breard 2019-05-25 16:55:28 +0200
  • d1a4f3b143 Add rust 1.34.2 to the travis-ci tests Rodolphe Breard 2019-05-24 00:38:16 +0200
  • b2da9db80b Update the license part of the readme Rodolphe Breard 2019-05-15 12:30:43 +0200
  • 6177fffb7e ACMEd 0.5.0 v0.5.0 Rodolphe Breard 2019-05-09 22:34:46 +0200
  • c06cb6aad7 Add env variable definition in the global section Rodolphe Breard 2019-05-09 22:29:46 +0200
  • 8444f34f55 Improve the basic certificate config example Rodolphe Breard 2019-05-09 20:59:14 +0200
  • d24c78ee17 Allow to configure per-domain environment variables Rodolphe Breard 2019-05-09 20:49:51 +0200
  • dd2c2f9888 Document the default hooks Rodolphe Breard 2019-05-09 18:41:08 +0200
  • 626921271b Fix the tls-alpn-01-tacd-unix hook name Rodolphe Breard 2019-05-09 18:40:47 +0200
  • 8d9ef17e1c Allow to configure environment variables for a given certificate Rodolphe Breard 2019-05-09 17:39:30 +0200
  • 03850d20e6 Add environment variables to hook templates Rodolphe Breard 2019-05-09 15:13:36 +0200
  • 73df1bb951 Allow tacd to listen on a unix socket Rodolphe Breard 2019-05-09 12:17:51 +0200
  • b7c3e4d381 Add default hooks Rodolphe Breard 2019-05-09 00:42:22 +0200
  • 7eed211434 Allow the config file to include other files Rodolphe Breard 2019-05-08 21:48:15 +0200
  • 2eff6cd799 Display a warning when fetching order or an authorization Rodolphe Breard 2019-05-08 19:21:32 +0200
  • 03b24a0a55 Update dependencies before building Rodolphe Breard 2019-05-08 16:32:48 +0200
  • d1d393f7a6 ACMEd 0.4.0 v0.4.0 Rodolphe Breard 2019-05-08 16:23:48 +0200
  • cd391ffdaf Fix the OpenSSL time parsing Rodolphe Breard 2019-05-08 16:08:36 +0200
  • d0783970c8 Renew a certificate that does not include all domains At some point, someone may add new domains to an existing certificate. In such case, this certificate should be renewed as soon as possible instead of upon expiration. Rodolphe Breard 2019-05-07 22:50:15 +0200
  • a59a909cc6 Format code Rodolphe Breard 2019-05-07 16:38:11 +0200
  • a0e3c80e51 Add the is_clean_hook variable to challenge hooks Rodolphe Breard 2019-05-07 16:37:34 +0200
  • 2d5e3969e1 Add the is_success variable to post-operation hooks Rodolphe Breard 2019-05-07 16:09:03 +0200
  • 65b97800c1 Fix the man build Rodolphe Breard 2019-05-06 13:35:38 +0200
  • d334f5ff2e Fix the Makefile install path Rodolphe Breard 2019-05-06 13:30:31 +0200
  • ed9bd8aaf2 Fix a typo Rodolphe Breard 2019-05-05 23:27:16 +0200
  • 36fc78d619 Update the changelog Rodolphe Breard 2019-05-05 23:25:55 +0200
  • 5e252d8b17 Forbid unknown configuration fields If a configuration field has a typo in its name, the configuration should show an error message instead of silently ignoring this field, which could create unwanted behavior. Rodolphe Breard 2019-05-05 21:18:40 +0200
  • d71f4ff405 Add tests for rustc 1.33.0 Rodolphe Breard 2019-05-05 21:11:26 +0200
  • 548f96e18c Remove the undocumented ChallengeHookData::algorithm field Rodolphe Breard 2019-05-05 21:10:05 +0200
  • bc3bbd9c91 Allow to customize installation directories Rodolphe Breard 2019-05-05 21:00:19 +0200
  • f2e048c15c Add a Makefile Rodolphe Breard 2019-05-05 20:44:10 +0200
  • c6037861f4 Improve the http-01-echo example If someone used the example the way it was defined, file-access issues may arise. This new example add two new hooks to fix it. The example should now work in most environment although the path may need to be adapted. Rodolphe Breard 2019-05-05 18:41:13 +0200
  • e0d260ca8c Add man pages Documentation is a crucial point for every project, and the most effective and traditional way to document a program is to write man page. Here, the mdoc is used because it is simple. Because the documentation is quite different from the project itself, the man pages and others helpful files are distributed under a different license. For this usage, the GNU All-Permissive License is adequate. https://www.gnu.org/prep/maintain/html_node/License-Notices-for-Other-Files.html man 7 groff_mdoc Rodolphe Breard 2019-05-05 18:00:06 +0200
  • 1c65795e2b Add build instruction for Debian-based systems Rodolphe Breard 2019-04-30 23:44:11 +0200
  • 04fe98be75 Fix the example config file Rodolphe Breard 2019-04-30 19:31:10 +0200
  • 163bb86d5d Remove the now unused challenge field in the example config file Rodolphe Breard 2019-04-30 17:53:31 +0200
  • c5c372071f Update the CHANGELOG Rodolphe Breard 2019-04-30 17:47:04 +0200
  • ed547f6a46 Update the README Rodolphe Breard 2019-04-30 17:46:11 +0200
  • 0e15cc69e4 Fix the syntax error in the example configuration file Rodolphe Breard 2019-04-30 17:30:26 +0200
  • 80e91cecd1 v0.3.0 v0.3.0 Rodolphe Breard 2019-04-30 17:19:32 +0200
  • 6067f52c7e Add tacd to the CHANGELOG Rodolphe Breard 2019-04-30 17:15:38 +0200
  • 8a0dd48cbd Merge branch 'root_cert' Rodolphe Breard 2019-04-30 16:55:20 +0200
  • 644484cb31 Change the hook and domains definitions Rodolphe Breard 2019-04-30 16:49:23 +0200
  • 447d1f848f Add an option to specify new trusted root certificates Rodolphe Breard 2019-04-29 19:52:05 +0200
  • b8aa782dd2 Use the native openssl methods for SAN construction The openssl crate does support having multiple DNS entries in the SAN extension, there is no need to re-implement it. Rodolphe Breard 2019-04-28 12:55:05 +0200
  • c632f952ed Support OpenSSL 1.0 Rodolphe Breard 2019-04-26 20:11:54 +0200
  • 261e0e50fd Change the Ubuntu distribution for Travis CI Rodolphe Breard 2019-04-26 18:24:35 +0200
  • 2fc4eef60c Add tacd, a daemon for the tls-alpn-01 challenge Rodolphe Breard 2019-04-26 17:42:43 +0200
  • eb7bc09134 Move the logs to the acme_common lib Rodolphe Breard 2019-04-26 17:31:29 +0200
  • d549c3db5a Move the daemonize role to acme_common Rodolphe Breard 2019-04-26 09:31:17 +0200
  • 83563ad950 Add the Clone trait to Error Rodolphe Breard 2019-04-25 23:48:08 +0200
  • a0d8944682 Move common items to a dedicated lib Rodolphe Breard 2019-04-25 23:23:59 +0200
  • 406bcd94d5 Update the README path Rodolphe Breard 2019-04-25 22:24:51 +0200
  • 79dd765c93 Update the README Rodolphe Breard 2019-04-25 21:52:13 +0200
  • 0a7deb4cdc Add tls-alpn-01 challenge support Rodolphe Breard 2019-04-25 21:50:29 +0200
  • c5c9d17885 Update the README Rodolphe Breard 2019-04-24 21:55:50 +0200
  • 84d2c94bad Use the base64-encoded account name for file names Rodolphe Breard 2019-04-24 19:42:52 +0200
  • 2c7b716584 Retry request rejected with a recoverable error Rodolphe Breard 2019-04-24 19:22:29 +0200
  • f1a3ae6eb7 Update the example config file Rodolphe Breard 2019-04-24 12:11:22 +0200
  • f30663cc7c Update a test Rodolphe Breard 2019-04-24 11:41:24 +0200
  • 9144c26b1f Allow not to have hooks or groups Rodolphe Breard 2019-04-24 11:26:51 +0200
  • e2787c3299 Require the explicit terms of service agreement Rodolphe Breard 2019-04-24 11:16:39 +0200
  • e66b5a5254 Use account objects instead of an email field Rodolphe Breard 2019-04-24 10:54:46 +0200
  • 9576a0b755 Update the rustc badge Rodolphe Breard 2019-04-23 23:50:41 +0200
  • 11255d4275 Update the minimal rustc version Rodolphe Breard 2019-04-23 23:45:33 +0200
  • 6258175c5e Reduce the executable size Rodolphe Breard 2019-04-23 23:37:35 +0200
  • 99f7ceabec Remove the `acme-lib` dependency Rodolphe Breard 2019-04-23 23:13:52 +0200
  • 5cb3801be0 v0.2.1 v0.2.1 Rodolphe Breard 2019-03-30 13:51:57 +0100
  • 9ff70d2d7f Fix the invalid CSR generation Due to a bug in the `acme-lib` dependency, the Certificate Signing Request was not built correctly. This issue caused the ACME server to reject such CSR when ordiring more than two domains. algesten/acme-lib#3 Rodolphe Breard 2019-03-30 13:41:20 +0100
  • f5adb2f774 Update the version number Rodolphe Breard 2019-03-27 20:04:45 +0100
  • a406cd7e16 v0.2.0 v0.2.0 Rodolphe Breard 2019-03-27 19:59:49 +0100
  • b8fed59235 Enhance code formatting Rodolphe Breard 2019-03-27 19:58:44 +0100
  • 60ece288ec Wait for a hook to end before starting the next one Not doing so may result in race conditions, hence breaking the promise that hooks are called in sequential order. Also, debug output has been added to the hooks. Rodolphe Breard 2019-03-27 18:51:10 +0100
  • 4c8489669f Update the example configuration file Rodolphe Breard 2019-03-27 18:47:05 +0100
  • ae48966b75 Remove the inappropriate flag conflict There is no reasons why any current log system would be inaccessible when running either in the background or the foreground. Rodolphe Breard 2019-03-27 18:17:26 +0100
  • 406424e932 Daemonize the process Rodolphe Breard 2019-03-26 20:19:55 +0100
  • ff9bdb3491 Send logs to syslog Rodolphe Breard 2019-03-26 20:02:53 +0100
  • f4f339b8c2 Add hooks before and after a file is created or edited It is considered a good practice to archive old certificates and private keys instead of simply dropping them away. Because ACMEd should not impose a way of doing things to system administrators, hooks are the way to go. Rodolphe Breard 2019-03-21 23:36:06 +0100
  • 558fd63ab5 Rename post_operation_hook to post_operation_hooks Rodolphe Breard 2019-03-21 19:10:08 +0100
  • d0bf5bfc01 Add hook groups Some configurations may require to run the same bunch of hooks for several domains. In order to limit repetition, it is now possible to create a group that will reference to hooks or hook groups. Rodolphe Breard 2019-03-21 19:01:36 +0100
  • a1fe7b6d5f Handle errors when writing to stdin When hooks are called, there is an option to feed stdin with a custom string. However, if any error happen, the .unwrap() causes the daemon to panic. This fix transforms it into an error than can be handled. Rodolphe Breard 2019-03-21 18:18:07 +0100
  • b3cbeaab4a Allow to reuse a key pair instead of creating a new one at each renewal The default behavior of most ACME clients is to generate a new key pair at each renewal. While this choice is respectable and perfectly justified in most configuration, it is also quite incompatible with the use of HTTP Public Key Pinning (HPKP). Although HPKP is not wildly supported and sometimes deprecated, users wishing to use it should not be blocked. https://tools.ietf.org/html/rfc7469 https://en.wikipedia.org/wiki/HTTP_Public_Key_Pinning Rodolphe Breard 2019-03-19 21:37:25 +0100
  • 3a9cbdd926 Fix some stuff in the readme Rodolphe Breard 2019-03-19 16:30:26 +0100
  • 27aecdc2a4 Replace the space by %20 v0.1.0 Rodolphe Breard 2019-03-19 16:12:34 +0100