Age | Commit message (Collapse) | Author | Files |
|
Credentials are saved in files specified by configuration directives
account.id and account.key. The directive account.directory specifies
the directory for these files.
|
|
|
|
This enables acmeman to handle complex Apache configurations with lots
of includes and eventual macros.
* Makefile.PL: Require Apache::Defaults and Apache::Config::Preproc`
* acmeman: Don't use the -w perl option. All acmeman sources use
warnings, so they don't need it. Underlying modules, however, may
emit warnings. In particular, Apache::Admin::Config is know to
emit lots of warnings about undefined $_[0] being used in
concatenation (in Apache/Admin/Config.pm:443). These are bening
and completely out of my control. Eliminating the -w option
suppresses them.
* lib/App/Acmeman/Source/Apache.pm: Rewrite using Apache::Config::Preproc
* lib/App/Acmeman/Config.pm (mangle): Raise error flag if the
configure method fails.
|
|
* acmeman: Use App::Acmeman.
* lib/App/Acmeman.pm: New module.
* lib/App/Acmeman/Config.pm (mangle): Reset debug_level if
necessary.
Use the BOOL data type.
* lib/App/Acmeman/Log.pm: New module.
* lib/App/Acmeman/Source.pm: Use functions from App::Acmeman::Log.
(add): New method.
(define_alias): Use add.
* lib/App/Acmeman/Source/Apache.pm: Use functions from App::Acmeman::Log.
* lib/App/Acmeman/Source/File.pm: Likewise.
|
|
|
|
|
|
* acmeman: Unset core.source for setup
* lib/App/Acmeman/Config.pm (unset): New function.
|
|
* Changes: Version 1.10
* MANIFEST.SKIP: Update.
* acmeman: Treat 'source' as multiple keyword.
* lib/App/Acmeman/Source/File.pm (new): Append /* only to directory
names.
|
|
* acmeman: Version 1.09
* lib/App/Acmeman/Apache/Layout.pm: Use full path to the service binary
|
|
|
|
configuration statement
* acmeman: Document apache source --server-root option.
* lib/App/Acmeman/Source/Apache.pm (new): Handle command line option.
Declare '--server-root' option.
(setup): Improve the SSLCipherSuite settings.
(probe): Bail out if unable to determine server root.
|
|
|
|
* lib/App/Acmeman/Source/Apache.pm (probe): Prefer apachectl over httpd
(follow-up from Apache::Defaults)
* acmeman: Version 1.06
* Changes: Update
|
|
|
|
* lib/App/Acmeman/Source/File.pm (new): New options --ignore and
--host.
* acmeman: Document the "file" source.
|
|
* acmeman (resolve): Use cname instead of owner
|
|
configuring file source module.
* acmeman: Call finalize after modifying configuration.
* lib/App/Acmeman/Config.pm (finalize): New method.
(new): Call finalize.
|
|
This complements b2e15909.
|
|
|
|
* Makefile.PL: Lower some prerequisite requirements.
* acmeman: Document the null source.
* lib/App/Acmeman/Source/Null.pm: New file.
|
|
Running
perl Makefile.PL --no-autoinstall
skips the use of ExtUtils::Autoinstall. This is useful when building
the package for various distributions.
* Makefile.PL: Use plain MakeMaker if given the --no-autoinstall option
* acmeman: Change NAME section.
|
|
|
|
|
|
* Makefile.PL: Require Sys::Hostname and Net::DNS
* acmeman (collect): If core.check-dns is set, test A records of
each hostname collected. Ignore hostnames that don't point back
to our server.
(%syntax): New keywords: core.check-dns and core.my-ip
|
|
* Makefile.PL: Require Crypt::OpenSSL::X509 1.808 (need the
Crypt::OpenSSL::X509::Extension to_string method)
* acmeman (domain_cert_expires): Get rid of the the old kludge
for retrieving SANs.
(coalesce): Fix Domain merging.
(cb_parse_bool): Bugfix.
* lib/App/Acmeman/Domain.pm (_domain_plus): Modify and return
a cloned copy of $a.
Fix typo in the declaration of overloaded '+'
|
|
* acmeman: (syntax) New configuration settings: core.key-size and
domain.*.key-size.
(make_csr): Take the key size as 2nd argument.
(domain_cert_expires): Determine key size from the configuration. Include
it in the debug output.
(coalesce): Bugfix.
* lib/App/Acmeman/Apache/Layout.pm (apache_layout_tab): Additional tests
to resolve ambuguities.
(new): Use the _test field to resolve ambiguities.
* lib/App/Acmeman/Source/Apache.pm (server_root): New method.
(http_include): Determine the server root by probing the server, unless
it is set explicitly in the configuration.
(probe): New method.
|
|
|
|
|
|
This patch introduces acmeman configuration file, which can be used to
direct its action if a server other than Apache is used. It also can
be instructed to store certificate, certificate chain, and certificate
key in a single file, instead of three different ones. This can be used
with such servers as pound(8).
In the absense of a configuration file, the program operates as in
previous versions.
* MANIFEST: Update.
* Makefile.PL: Update.
* Changes: Update.
* acmeman: Use configuration file if present. Apache configuration
remains as a default source of TLS domains. Configuration file can
override or complement it.
* lib/App/Acmeman/Domain.pm: New file.
* lib/App/Acmeman/Config.pm: New file.
* lib/App/Acmeman/Source/Apache.pm: New file.
* lib/App/Acmeman/Apache/Layout.pm: New file.
|
|
* acmeman (domain_cert_expires): Convert domain names to lowercase
before comparing
(coalesce): Use array as first argument to push
|
|
* acmeman: Version 1.03
New options: --restart, --incdir
(apache_layout_tab): Add restart key
Run $apache_layout->{restart} at the end, if any of the certificates changed
|
|
|
|
* acmeman: Improve SAN comparison.
New option --stage, -s.
--dry-run now does just what it's supposed to do
Rearrange debug levels.
|
|
* acmeman: New option --alt-names
New macro LetsEncryptReference
Coalesce virtual hosts referring to the same server name.
|
|
|
|
* .gitignore: Update.
* MANIFEST: inc/ExtUtils/AutoInstall.pm
* Makefile.PL: Add Data::Dumper
* acmeman: Optional arguments select what domains to
renew.
Improve configuration parser.
(register_domain_certificate): Autorize each alternative.
(make_csr): Fix adding alternative names.
|
|
|
|
|