Nicolas Duchon
cfc274642b
Reload nginx after creating the default cert
2020-11-27 14:46:46 +01:00
Nicolas Duchon
3e4b0a43dd
Linefeed typo
2020-11-27 14:46:45 +01:00
Nicolas Duchon
fde553364c
Use acme.sh --register-account in the service loop
2020-11-27 14:46:45 +01:00
Gilles Filippini
195b19d221
Use email-less staging conf for test certificates
2020-11-27 14:46:45 +01:00
Nicolas Duchon
aa62af0052
Code styling
2020-11-27 14:46:45 +01:00
Nicolas Duchon
0c165134b9
Update docs and comments
2020-11-27 14:46:45 +01:00
Gilles Filippini
3b1e1ba851
Enable proxied containers ACME email override
2020-11-27 14:46:44 +01:00
Gilles Filippini
3b6d87e8c2
Use default config for empty DEFAULT_EMAIL only
2020-11-27 14:46:44 +01:00
Nicolas Duchon
7cf0a52bce
Refactor update_certs() into two functions
2020-11-27 14:46:44 +01:00
Gilles Filippini
4504e3b4ca
Remove unused function from entrypoint
2020-11-27 14:46:44 +01:00
Gilles Filippini
f66c1d55bf
Links should be created on RENEW_SKIP as well
2020-11-27 14:46:43 +01:00
Nicolas Duchon
c821d809f6
Change ACME client to acme.sh
2020-11-27 14:44:01 +01:00
Nicolas Duchon
96c9cbf821
Revert "Merge pull request #485 from Greek64/PR"
...
This feature is not supported in this form by acme.sh
This reverts commit 7dd2cd67e5
, reversing
changes made to 6a90d53c97
.
2020-11-27 14:44:01 +01:00
Nicolas Duchon
fa6745c01b
Make docker-gen wait configurable, lower default
...
This is supposed to just be a debounce
15s by default was way too long
2020-11-23 03:13:15 +01:00
Remo Gloor
6ede7a7663
Search in all config files for standalone config
...
Search in all .conf files for the server configuration when a standalone configuration exists.
2020-11-12 18:04:53 +01:00
Maarten de Jong
04d2c32b91
Fix typo
...
People (like me) will think they should add a dot to the end of their label.
2020-09-25 20:42:33 +02:00
Nicolas Duchon
09518fec98
Grep more than just the domain for standalone conf
2020-07-17 14:24:39 +02:00
Nicolas Duchon
3052654431
Fix issue with trailing dot on domains list
2020-07-04 15:29:37 +02:00
Nicolas Duchon
728a893505
Set auth_request off
...
#570
2020-05-11 15:47:00 +02:00
Nicolas Duchon
45df81962e
Shell linting
2020-05-11 15:43:07 +02:00
Nicolas Duchon
8a936cc4fe
Add standalone certificate feature
...
Standalone certificates are generated from a static user provided
configuration file rather than from the dynamicaly generated (from
running containers environment variables) letsencrypt_service_data file.
2020-05-10 19:35:59 +02:00
SilverFire - Dmitry Naumenko
5592543838
Implemented LETSENCRYPT_SINGLE_DOMAIN_CERTS environment variable
2020-04-21 13:29:41 +03:00
Nicolas Duchon
e49c2d5213
Shellcheck linting ( #641 )
2020-03-23 08:20:46 +01:00
Nicolas Duchon
82b088353d
Fix and improve the /app/cert_status utility
2019-12-09 23:01:29 +01:00
Nicolas Duchon
cec2482b27
Verify account files existence before perm check ( #592 )
...
fix #591
2019-10-17 13:57:48 +02:00
Nicolas Duchon
30c51154e4
Clearer debug and comments on set_ownership_and_permissions()
2019-10-10 11:50:18 +02:00
Nicolas Duchon
57fae83e70
ACME v2 compatibility
...
Use simp_le master branch for now
2019-10-10 11:50:14 +02:00
Nicolas Duchon
d26118f615
Merge pull request #588 from buchdag/fix-561
...
Enable use of wildcard location configurations
2019-10-10 11:30:58 +02:00
Dan Sullivan
9071075d32
Set auth_request off for acme challenge location
2019-08-18 21:19:36 -04:00
Nicolas Duchon
90e6fbcb49
Use wildcard location configurations
...
fix #561
2019-08-02 19:55:12 +02:00
Nicolas Duchon
33b7d93196
Merge pull request #550 from buchdag/default-email
...
Add environment variable for global default email.
2019-06-11 10:42:48 +02:00
Nicolas Duchon
36ef610f0e
Use cp/rm instead of mv on location configuration
...
mv does not work with file bind mounted
inside a container with --volume as their inode
can't be changed from within the container
2019-06-09 14:18:05 +02:00
Nicolas Duchon
b66d21b60e
Add DEFAULT_EMAIL global env variable
2019-05-30 11:17:17 +02:00
Nicolas Duchon
48b4b450ce
Fix DH parameters overwrite issue ( #545 )
...
fix #543
2019-05-20 17:16:37 +02:00
Nicolas Duchon
522d396b0d
Fix unbound variable issue in get_self_cid
...
fix #542
2019-05-17 18:01:59 +02:00
Max Zhao
af4784d444
Fixing get cid to retry alternative sources. Also use regex to exactly match 64 char CID
2019-02-28 10:47:14 +01:00
Nicolas Duchon
fb2d0b2371
Use multiple methods to obtain self cid ( #499 )
...
fix #498
2019-01-16 11:29:24 +01:00
Nicolas Duchon
70405ffde9
Simplify the self cid discovery mechanism
...
Also remove the hard requirement that the container get its
self cid during entrypoint as it is only used to produce a warning
and to get the nginx-proxy container id through --volumes-from,
which is only one of the three methods.
The fact that the LE container could get an nginx-proxy container id
is independently verified by the entrypoint script anyway and this
hard requirement on getting its self cid has been known to cause
troubles with containers running under orchestrators such as Amazon ECS
or Kubernetes.
2019-01-09 20:49:11 +01:00
Grieche
a911b12661
Added LETSENCRYPT_MIN_VALIDITY environment variable.
...
Allows to specify the minimum validity of certificates
per container.
2019-01-08 18:11:21 +01:00
Grieche
31daa643e5
* Fix whitespace typos
2018-12-21 18:19:05 +01:00
Grieche
fbab2c2913
* New environmental variable LETSENCRYPT_RESTART_CONTAINER
...
Containers with this variable set to true will be restarted
when their respective certificates are updated/modified.
2018-12-19 20:29:49 +01:00
Nicolas Duchon
feefd2d646
Manage ownership of symlinks too
...
Fix #471
2018-12-15 00:14:42 +01:00
Nicolas Duchon
5ac2ba963e
Make the DEBUG env var case insensitive ( #480 )
...
bug spotted by @desimaniac
2018-12-14 09:49:51 +01:00
Nicolas Duchon
bb0d7d8575
Use dotfile to identify managed certs
...
fix #465
2018-11-23 15:24:56 +01:00
Nicolas Duchon
5e10577638
Change ownership of public files too
2018-10-29 13:32:37 +01:00
Nicolas Duchon
d277e66089
Check perms only on simp_le non error exit
2018-10-29 10:32:17 +01:00
Nicolas Duchon
7fe8dd27f1
Check if path exist before perm check
2018-10-29 10:32:17 +01:00
Nicolas Duchon
a8f906b9ca
Default perms 755 (folders) - 644 (files)
2018-10-29 10:32:12 +01:00
Nicolas Duchon
c5d59e0c45
Ownership and permissions configuration
2018-10-29 00:43:45 +01:00
Nicolas Duchon
cd5729ce02
Check & enforce perms on sensitive files
...
fix #412
2018-09-16 09:20:58 +02:00