aboutsummaryrefslogtreecommitdiff
path: root/acmeman
AgeCommit message (Collapse)AuthorFiles
2019-10-18Clean up account credential handling.Sergey Poznyakoff1
Credentials are saved in files specified by configuration directives account.id and account.key. The directive account.directory specifies the directory for these files.
2019-08-26Improve docs.Sergey Poznyakoff1
2019-08-26Rewrite the Apache source support using Apache::Config::Preproc moduleSergey Poznyakoff1
This enables acmeman to handle complex Apache configurations with lots of includes and eventual macros. * Makefile.PL: Require Apache::Defaults and Apache::Config::Preproc` * acmeman: Don't use the -w perl option. All acmeman sources use warnings, so they don't need it. Underlying modules, however, may emit warnings. In particular, Apache::Admin::Config is know to emit lots of warnings about undefined $_[0] being used in concatenation (in Apache/Admin/Config.pm:443). These are bening and completely out of my control. Eliminating the -w option suppresses them. * lib/App/Acmeman/Source/Apache.pm: Rewrite using Apache::Config::Preproc * lib/App/Acmeman/Config.pm (mangle): Raise error flag if the configure method fails.
2019-08-23Move main functionality to a moduleSergey Poznyakoff1
* acmeman: Use App::Acmeman. * lib/App/Acmeman.pm: New module. * lib/App/Acmeman/Config.pm (mangle): Reset debug_level if necessary. Use the BOOL data type. * lib/App/Acmeman/Log.pm: New module. * lib/App/Acmeman/Source.pm: Use functions from App::Acmeman::Log. (add): New method. (define_alias): Use add. * lib/App/Acmeman/Source/Apache.pm: Use functions from App::Acmeman::Log. * lib/App/Acmeman/Source/File.pm: Likewise.
2019-08-21Use Config::Parser::Ini for configurationSergey Poznyakoff1
2019-08-15Version 1.11v1.11Sergey Poznyakoff1
2019-08-15Fix acmeman --setupSergey Poznyakoff1
* acmeman: Unset core.source for setup * lib/App/Acmeman/Config.pm (unset): New function.
2019-03-15Multiple 'source' configuration statements.v1.10Sergey Poznyakoff1
* Changes: Version 1.10 * MANIFEST.SKIP: Update. * acmeman: Treat 'source' as multiple keyword. * lib/App/Acmeman/Source/File.pm (new): Append /* only to directory names.
2019-03-14Use full path to the service binaryv1.09Sergey Poznyakoff1
* acmeman: Version 1.09 * lib/App/Acmeman/Apache/Layout.pm: Use full path to the service binary
2018-10-06Version 1.08v1.08Sergey Poznyakoff1
2018-10-06Support explicit declaration of server root directory in apache source ↵Sergey Poznyakoff1
configuration statement * acmeman: Document apache source --server-root option. * lib/App/Acmeman/Source/Apache.pm (new): Handle command line option. Declare '--server-root' option. (setup): Improve the SSLCipherSuite settings. (probe): Bail out if unable to determine server root.
2018-07-17Version 1.07v1.07Sergey Poznyakoff1
2018-07-17Version 1.06v1.06Sergey Poznyakoff1
* lib/App/Acmeman/Source/Apache.pm (probe): Prefer apachectl over httpd (follow-up from Apache::Defaults) * acmeman: Version 1.06 * Changes: Update
2018-05-07Use gethostbyname + Socket::inet_ntoa instead of Net::DNSSergey Poznyakoff1
2018-05-07Improve "file" sourceSergey Poznyakoff1
* lib/App/Acmeman/Source/File.pm (new): New options --ignore and --host. * acmeman: Document the "file" source.
2018-05-05BugfixSergey Poznyakoff1
* acmeman (resolve): Use cname instead of owner
2018-04-19Make sure configuration defaults are applied and syntax rechecked after ↵Sergey Poznyakoff1
configuring file source module. * acmeman: Call finalize after modifying configuration. * lib/App/Acmeman/Config.pm (finalize): New method. (new): Call finalize.
2018-04-19Resolve CNAMES recursivelySergey Poznyakoff1
This complements b2e15909.
2018-04-19Always report incorrect termination of a subprocessSergey Poznyakoff1
2018-04-17Add null domain source.Sergey Poznyakoff1
* Makefile.PL: Lower some prerequisite requirements. * acmeman: Document the null source. * lib/App/Acmeman/Source/Null.pm: New file.
2018-04-17Provide an option to skip autoinstall on compile timeSergey Poznyakoff1
Running perl Makefile.PL --no-autoinstall skips the use of ExtUtils::Autoinstall. This is useful when building the package for various distributions. * Makefile.PL: Use plain MakeMaker if given the --no-autoinstall option * acmeman: Change NAME section.
2018-04-17Version 1.05Sergey Poznyakoff1
2018-04-17New statement domain.*.postrenew; core.restart renamed to core.postrenewSergey Poznyakoff1
2018-04-16Ignore hostnames that don't resolve to the server IP addressSergey Poznyakoff1
* Makefile.PL: Require Sys::Hostname and Net::DNS * acmeman (collect): If core.check-dns is set, test A records of each hostname collected. Ignore hostnames that don't point back to our server. (%syntax): New keywords: core.check-dns and core.my-ip
2018-02-28BigfixesSergey Poznyakoff1
* Makefile.PL: Require Crypt::OpenSSL::X509 1.808 (need the Crypt::OpenSSL::X509::Extension to_string method) * acmeman (domain_cert_expires): Get rid of the the old kludge for retrieving SANs. (coalesce): Fix Domain merging. (cb_parse_bool): Bugfix. * lib/App/Acmeman/Domain.pm (_domain_plus): Modify and return a cloned copy of $a. Fix typo in the declaration of overloaded '+'
2018-02-09Use configurable key length.Sergey Poznyakoff1
* acmeman: (syntax) New configuration settings: core.key-size and domain.*.key-size. (make_csr): Take the key size as 2nd argument. (domain_cert_expires): Determine key size from the configuration. Include it in the debug output. (coalesce): Bugfix. * lib/App/Acmeman/Apache/Layout.pm (apache_layout_tab): Additional tests to resolve ambuguities. (new): Use the _test field to resolve ambiguities. * lib/App/Acmeman/Source/Apache.pm (server_root): New method. (http_include): Determine the server root by probing the server, unless it is set explicitly in the configuration. (probe): New method.
2018-01-30Apply command line options after loading configurationSergey Poznyakoff1
2017-12-08Fix typosSergey Poznyakoff1
2017-09-13RewriteSergey Poznyakoff1
This patch introduces acmeman configuration file, which can be used to direct its action if a server other than Apache is used. It also can be instructed to store certificate, certificate chain, and certificate key in a single file, instead of three different ones. This can be used with such servers as pound(8). In the absense of a configuration file, the program operates as in previous versions. * MANIFEST: Update. * Makefile.PL: Update. * Changes: Update. * acmeman: Use configuration file if present. Apache configuration remains as a default source of TLS domains. Configuration file can override or complement it. * lib/App/Acmeman/Domain.pm: New file. * lib/App/Acmeman/Config.pm: New file. * lib/App/Acmeman/Source/Apache.pm: New file. * lib/App/Acmeman/Apache/Layout.pm: New file.
2017-06-02Minor fixesSergey Poznyakoff1
* acmeman (domain_cert_expires): Convert domain names to lowercase before comparing (coalesce): Use array as first argument to push
2017-06-02Restart apache if any of the certificates changedSergey Poznyakoff1
* acmeman: Version 1.03 New options: --restart, --incdir (apache_layout_tab): Add restart key Run $apache_layout->{restart} at the end, if any of the certificates changed
2017-04-01Use LWP::UserAgent instead of WWW::Curl::EasySergey Poznyakoff1
2017-02-18Minor improvements.Sergey Poznyakoff1
* acmeman: Improve SAN comparison. New option --stage, -s. --dry-run now does just what it's supposed to do Rearrange debug levels.
2017-02-12Support creation of SAN certificates shared between several virtual hostsSergey Poznyakoff1
* acmeman: New option --alt-names New macro LetsEncryptReference Coalesce virtual hosts referring to the same server name.
2017-02-09Improve debugging, use 4096 bit keys; fix adding alternative namesSergey Poznyakoff1
2017-02-07Fix adding alternative names to the certificatesSergey Poznyakoff1
* .gitignore: Update. * MANIFEST: inc/ExtUtils/AutoInstall.pm * Makefile.PL: Add Data::Dumper * acmeman: Optional arguments select what domains to renew. Improve configuration parser. (register_domain_certificate): Autorize each alternative. (make_csr): Fix adding alternative names.
2017-02-06Write the docs.Sergey Poznyakoff1
2017-02-05Initial commitSergey Poznyakoff1

Return to:

Send suggestions and report system problems to the System administrator.