aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFiles
2019-12-24Version 3.03v3.03Sergey Poznyakoff2
2019-12-23Define envvars prior to running postrenew. Other improvements.Sergey Poznyakoff6
* Changes: Update. * acmeman: Document changes. * lib/App/Acmeman.pm: Version 3.02.90. Pass information about renewed certificate to postrenew commands in environment variables. Remove created challenge files when no longer needed. * lib/App/Acmeman/Config.pm (mangle): Improve error message. Use "default" domain source by default. * lib/App/Acmeman/Source/Apache.pm: Minor changes. * lib/App/Acmeman/Source/Default.pm: New file. Source for the "default" domain source.
2019-10-23Take into account ServerName if LetsEncryptReference is given.v3.02Sergey Poznyakoff3
* lib/App/Acmeman/Source/Apache.pm (examine_http_config): Take into account ServerName if LetsEncryptReference is given. * Changes: Update. * lib/App/Acmeman.pm: Version 3.02
2019-10-21Accept multiple hostnames in the ServerAlias directivev3.01Sergey Poznyakoff3
2019-10-19Version 3.0v3.00Sergey Poznyakoff2
2019-10-19Remove unused methodSergey Poznyakoff1
2019-10-19Process all order authorizations, not only the firstSergey Poznyakoff1
2019-10-18Clean up account credential handling.Sergey Poznyakoff3
Credentials are saved in files specified by configuration directives account.id and account.key. The directive account.directory specifies the directory for these files.
2019-10-18Switch to ACMEv2Sergey Poznyakoff3
* Makefile.PL: Require Net::ACME2 * lib/App/Acmeman.pm: Rewrite using Net::ACME2. Avoid re-creating account key/id. * lib/App/Acmeman/Config.pm: Provide default for verbose.
2019-09-11Fix bug introduced in the previous commitv2.02Sergey Poznyakoff4
* Changes: Update. * lib/App/Acmeman.pm: Version 2.02 * lib/App/Acmeman/Source.pm (is_set): New method. * lib/App/Acmeman/Source/Apache.pm (scan): Use is_set method instead of non-existing cfg.
2019-09-11Bugfixes.v2.01Sergey Poznyakoff5
* Changes: Update * Makefile.PL: Require Config::Parser. * lib/App/Acmeman.pm: Implement the --version option. * lib/App/Acmeman/Source/Apache.pm (scan): Set core.postrenew from layout, if it is not set explicitly. * lib/App/Acmeman/Source/File.pm (scan): Fix inverted logic (load returns false on error.
2019-08-26Don't distribute a copy of AutoInstall.pmv2.00Sergey Poznyakoff2
2019-08-26Improve docs.Sergey Poznyakoff5
2019-08-26Rewrite the Apache source support using Apache::Config::Preproc moduleSergey Poznyakoff4
This enables acmeman to handle complex Apache configurations with lots of includes and eventual macros. * Makefile.PL: Require Apache::Defaults and Apache::Config::Preproc` * acmeman: Don't use the -w perl option. All acmeman sources use warnings, so they don't need it. Underlying modules, however, may emit warnings. In particular, Apache::Admin::Config is know to emit lots of warnings about undefined $_[0] being used in concatenation (in Apache/Admin/Config.pm:443). These are bening and completely out of my control. Eliminating the -w option suppresses them. * lib/App/Acmeman/Source/Apache.pm: Rewrite using Apache::Config::Preproc * lib/App/Acmeman/Config.pm (mangle): Raise error flag if the configure method fails.
2019-08-25Fix repository URL in Makefile.PLSergey Poznyakoff1
2019-08-23Move main functionality to a moduleSergey Poznyakoff8
* acmeman: Use App::Acmeman. * lib/App/Acmeman.pm: New module. * lib/App/Acmeman/Config.pm (mangle): Reset debug_level if necessary. Use the BOOL data type. * lib/App/Acmeman/Log.pm: New module. * lib/App/Acmeman/Source.pm: Use functions from App::Acmeman::Log. (add): New method. (define_alias): Use add. * lib/App/Acmeman/Source/Apache.pm: Use functions from App::Acmeman::Log. * lib/App/Acmeman/Source/File.pm: Likewise.
2019-08-21Use Config::Parser::Ini for configurationSergey Poznyakoff3
2019-08-15Version 1.11v1.11Sergey Poznyakoff2
2019-08-15Fix acmeman --setupSergey Poznyakoff2
* acmeman: Unset core.source for setup * lib/App/Acmeman/Config.pm (unset): New function.
2019-03-15Multiple 'source' configuration statements.v1.10Sergey Poznyakoff4
* Changes: Version 1.10 * MANIFEST.SKIP: Update. * acmeman: Treat 'source' as multiple keyword. * lib/App/Acmeman/Source/File.pm (new): Append /* only to directory names.
2019-03-15BugfixSergey Poznyakoff1
* lib/App/Acmeman/Config.pm (_fixup): Use @path argument when passing pathnames.
2019-03-14Use full path to the service binaryv1.09Sergey Poznyakoff2
* acmeman: Version 1.09 * lib/App/Acmeman/Apache/Layout.pm: Use full path to the service binary
2018-10-06Version 1.08v1.08Sergey Poznyakoff2
2018-10-06Support explicit declaration of server root directory in apache source ↵Sergey Poznyakoff2
configuration statement * acmeman: Document apache source --server-root option. * lib/App/Acmeman/Source/Apache.pm (new): Handle command line option. Declare '--server-root' option. (setup): Improve the SSLCipherSuite settings. (probe): Bail out if unable to determine server root.
2018-09-26BugfixSergey Poznyakoff1
* lib/App/Acmeman/Source/Null.pm: Provide a constructor.
2018-07-17Version 1.07v1.07Sergey Poznyakoff2
2018-07-17Version 1.06v1.06Sergey Poznyakoff3
* lib/App/Acmeman/Source/Apache.pm (probe): Prefer apachectl over httpd (follow-up from Apache::Defaults) * acmeman: Version 1.06 * Changes: Update
2018-05-07Use gethostbyname + Socket::inet_ntoa instead of Net::DNSSergey Poznyakoff2
2018-05-07Improve "file" sourceSergey Poznyakoff2
* lib/App/Acmeman/Source/File.pm (new): New options --ignore and --host. * acmeman: Document the "file" source.
2018-05-05BugfixSergey Poznyakoff1
* acmeman (resolve): Use cname instead of owner
2018-04-19Make sure configuration defaults are applied and syntax rechecked after ↵Sergey Poznyakoff2
configuring file source module. * acmeman: Call finalize after modifying configuration. * lib/App/Acmeman/Config.pm (finalize): New method. (new): Call finalize.
2018-04-19Resolve CNAMES recursivelySergey Poznyakoff1
This complements b2e15909.
2018-04-19Provide a base class for source classes.Sergey Poznyakoff5
* lib/App/Acmeman/Apache/Layout.pm: Remove debug. * lib/App/Acmeman/Source.pm: New file. * lib/App/Acmeman/Source/Apache.pm: Inherit from App::Acmeman::Source. * lib/App/Acmeman/Source/Null.pm: Likewise. * lib/App/Acmeman/Source/File.pm: New file.
2018-04-19Always report incorrect termination of a subprocessSergey Poznyakoff1
2018-04-17Update Changes.Sergey Poznyakoff4
* Changes: Update. * MANIFEST: Remove auto-generated file. * .gitignore: Ignore MANIFEST. * MANIFEST.SKIP: New file.
2018-04-17Add null domain source.Sergey Poznyakoff3
* Makefile.PL: Lower some prerequisite requirements. * acmeman: Document the null source. * lib/App/Acmeman/Source/Null.pm: New file.
2018-04-17Makefile.PL: pass unrecognized options on to MakeMakerSergey Poznyakoff1
2018-04-17Lower prerequisite version for LWP::UserAgentSergey Poznyakoff1
2018-04-17Provide an option to skip autoinstall on compile timeSergey Poznyakoff2
Running perl Makefile.PL --no-autoinstall skips the use of ExtUtils::Autoinstall. This is useful when building the package for various distributions. * Makefile.PL: Use plain MakeMaker if given the --no-autoinstall option * acmeman: Change NAME section.
2018-04-17Version 1.05Sergey Poznyakoff1
2018-04-17New statement domain.*.postrenew; core.restart renamed to core.postrenewSergey Poznyakoff3
2018-04-16Ignore hostnames that don't resolve to the server IP addressSergey Poznyakoff2
* Makefile.PL: Require Sys::Hostname and Net::DNS * acmeman (collect): If core.check-dns is set, test A records of each hostname collected. Ignore hostnames that don't point back to our server. (%syntax): New keywords: core.check-dns and core.my-ip
2018-04-16BugfixSergey Poznyakoff1
* lib/App/Acmeman/Source/Apache.pm (examine_http_config): Ignore trailing whitespace in LetsEncryptReference.
2018-02-28BigfixesSergey Poznyakoff3
* Makefile.PL: Require Crypt::OpenSSL::X509 1.808 (need the Crypt::OpenSSL::X509::Extension to_string method) * acmeman (domain_cert_expires): Get rid of the the old kludge for retrieving SANs. (coalesce): Fix Domain merging. (cb_parse_bool): Bugfix. * lib/App/Acmeman/Domain.pm (_domain_plus): Modify and return a cloned copy of $a. Fix typo in the declaration of overloaded '+'
2018-02-09Use configurable key length.Sergey Poznyakoff3
* acmeman: (syntax) New configuration settings: core.key-size and domain.*.key-size. (make_csr): Take the key size as 2nd argument. (domain_cert_expires): Determine key size from the configuration. Include it in the debug output. (coalesce): Bugfix. * lib/App/Acmeman/Apache/Layout.pm (apache_layout_tab): Additional tests to resolve ambuguities. (new): Use the _test field to resolve ambiguities. * lib/App/Acmeman/Source/Apache.pm (server_root): New method. (http_include): Determine the server root by probing the server, unless it is set explicitly in the configuration. (probe): New method.
2018-01-30Apply command line options after loading configurationSergey Poznyakoff1
2017-12-08Fix typosSergey Poznyakoff1
2017-09-13RewriteSergey Poznyakoff9
This patch introduces acmeman configuration file, which can be used to direct its action if a server other than Apache is used. It also can be instructed to store certificate, certificate chain, and certificate key in a single file, instead of three different ones. This can be used with such servers as pound(8). In the absense of a configuration file, the program operates as in previous versions. * MANIFEST: Update. * Makefile.PL: Update. * Changes: Update. * acmeman: Use configuration file if present. Apache configuration remains as a default source of TLS domains. Configuration file can override or complement it. * lib/App/Acmeman/Domain.pm: New file. * lib/App/Acmeman/Config.pm: New file. * lib/App/Acmeman/Source/Apache.pm: New file. * lib/App/Acmeman/Apache/Layout.pm: New file.
2017-06-02Minor fixesSergey Poznyakoff1
* acmeman (domain_cert_expires): Convert domain names to lowercase before comparing (coalesce): Use array as first argument to push
2017-06-02Restart apache if any of the certificates changedSergey Poznyakoff1
* acmeman: Version 1.03 New options: --restart, --incdir (apache_layout_tab): Add restart key Run $apache_layout->{restart} at the end, if any of the certificates changed

Return to:

Send suggestions and report system problems to the System administrator.