Age | Commit message (Collapse) | Author | |
---|---|---|---|
2019-06-30 | remove unused code | Andrew Cady | |
2019-06-30 | re-enable disabled warning | Andrew Cady | |
2019-06-30 | whitespace | Andrew Cady | |
2017-07-05 | add command to check for certificate expiration on remote HTTP hosts | Andrew Cady | |
2017-06-11 | spelling | Andrew Cady | |
2017-06-11 | avoid unneeded provision checks | Andrew Cady | |
2017-06-11 | provision check is now optional | Andrew Cady | |
2017-03-02 | update to lts-8.3 | Andrew Cady | |
2017-03-02 | improve command-line usage help | Andrew Cady | |
2016-10-28 | factor out function 'configGetCertReqs' | Andrew Cady | |
2016-05-01 | ensure created certs have proper permissions | Andrew Cady | |
2016-05-01 | actually respect --config command line option | Andrew Cady | |
2016-05-01 | switch to new X3 certificate | Andrew Cady | |
2016-04-11 | Properly check for added subdomains | Andrew Cady | |
Regardless of whether the certificate isn't near expiration, if any name in the configuration file isn't in the certificate, a new certificate will be generated. | |||
2016-04-11 | Implement code to read X509 subjectAltName | Andrew Cady | |
This isn't actually used yet; it's just printed out. | |||
2016-04-11 | Check existing certificate expiration | Andrew Cady | |
This disables renewing the cert unless the existing cert will expire within 20 days. It doesn't check if the existing cert has the same names as the new cert would! This needs to be done. | |||
2016-04-10 | New option to "update": --try | Andrew Cady | |
2016-04-10 | fix bug where "." as subdomain was not substituted | Andrew Cady | |
2016-04-10 | Add option "--dry-run" to command "update" | Andrew Cady | |
2016-04-10 | successfully fetched real certificate | Andrew Cady | |
2016-04-10 | Perform all provision checks before any ACME requests | Andrew Cady | |
Also removed various test output | |||
2016-04-10 | 'acme update' accepts hosts as arguments | Andrew Cady | |
When arguments are specified on the command line, they will be interpreted as hosts to limit the update to. Without arguments, update all hosts. | |||
2016-04-09 | Change certificate output directory | Andrew Cady | |
It's now saved under <host>/<domain> even if only a subdomain of <domain> is being certified. | |||
2016-04-09 | successfully retrieved certificate with update code | Andrew Cady | |
2016-04-09 | disable misc. test output | Andrew Cady | |
2016-04-09 | fix erroneous use of "show" on DomainName | Andrew Cady | |
2016-04-09 | Specify remote provisioning paths in config file | Andrew Cady | |
2016-04-09 | implement remote file http provisioner | Andrew Cady | |
2016-04-09 | implement code to install & clean up remote temporary files | Andrew Cady | |
(via ssh) | |||
2016-04-09 | generate stub CertSpec objects from config file | Andrew Cady | |
(CertSpec is the new name for AcmeCertRequest) | |||
2016-04-09 | stub parsing of yaml config file | Andrew Cady | |
2016-04-09 | import Data.Yaml.Config | Andrew Cady | |
2016-04-09 | Separate CLI into subcommands | Andrew Cady | |
Viz. 'update' and 'certify' 'certify' is just the previous CLI. 'update' is unimplemented. The binary was renamed from 'acme-certify' to 'acme' to reflect this. | |||
2016-04-09 | Trivial, formatting | Andrew Cady | |
2016-04-09 | Move generation of CSR into `certify` function | Andrew Cady | |
2016-04-08 | More renames/cleanup related to HttpProvisioner | Andrew Cady | |
2016-04-08 | Improve HttpProvisioner interface | Andrew Cady | |
These still need to be renamed | |||
2016-04-08 | More refactoring | Andrew Cady | |
2016-04-08 | Change type of HttpProvisioner | Andrew Cady | |
Now it is parameterized on domain name. This will allow to provision to a different directory for each (sub)domain. | |||
2016-04-08 | slight refactor | Andrew Cady | |
2016-01-27 | remove Keys type from Network.ACME.Encoding | Andrew Cady | |
2016-01-27 | Embed issuer certificate in binary | Andrew Cady | |
This permits the program to be run from outside the source directory. | |||
2016-01-26 | Pre-generate DH params | Andrew Cady | |
The program now outputs a combined PEM certificate. A new option allows DH-param generation to be disabled. | |||
2016-01-25 | generate DH params; use PEM for final output | Andrew Cady | |
this needs to be made optional and the DH params should be cached, because generating them is very slow. | |||
2016-01-25 | move genReq into the library | Andrew Cady | |
2016-01-25 | Change API of "certify" | Andrew Cady | |
It now expects a callback to provision the challenge responses. This needs to be improved so that it will also do cleanup. | |||
2016-01-24 | fix warnings | Andrew Cady | |
2016-01-24 | Oops; don't use "show" with DomainName type | Andrew Cady | |
2016-01-24 | Don't save CSR to disk; cleanup | Andrew Cady | |
2016-01-24 | use BasePrelude | Andrew Cady | |