github-forks
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
5,367 Commits
9 Branches
44 Tags
26 MiB
dev
ari
master
tlsa
u
shebang
json
dnsconf
cron
1.2.2
1.2.3
2.0.2
2.2.9
2.3.0
2.5.2
2.6.0
2.6.4
2.6.5
2.6.6
2.6.8
2.7.1
2.7.2
2.7.3
2.7.4
2.7.5
2.7.6
2.7.7
2.7.8
2.7.9
2.8.0
2.8.1
2.8.2
2.8.3
2.8.4
2.8.5
2.8.6
2.8.7
2.8.8
2.8.9
2.9.0
3.0.0
3.0.1
3.0.2
3.0.3
3.0.4
3.0.5
3.0.6
3.0.7
3.0.8
3.0.9
3.1.0
v2.6.9
v3.0.5
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7aaf4432d4'
${ noResults }
Commit Graph

25 Commits (7aaf4432d4068ec10dff5447d5843957f729de0a)

Author SHA1 Message Date
William Lallemand 7aaf4432d4 haproxy: sanitize the PEM in the deploy script 
Sanitize the PEM of the haproxy deploy script by removing the '\n', this
way it could be injected directly over the CLI.
 1 year ago
podguzovvasily 8ca5ca6594
Update haproxy.sh 
resolved issue with HAProxy https://github.com/acmesh-official/acme.sh/issues/4788
according https://serversforhackers.com/c/letsencrypt-with-haproxy
 1 year ago
Glenn Strauss 8419b42e83 use ${ACME_OPENSSL_BIN:-openssl} instead of openssl 
(requested by @Neilpang in #3687)
 3 years ago
Glenn Strauss c43c711f72 use _getdeployconf instead of sourcing DOMAIN_CONF 
(requested by @Neilpang in #3394)

github: closes #3394
 3 years ago
Felix Bünemann cf5952f508
fix haproxy deploy hook ocsp update 
fixes ocsp reponse update failing with `Responder Error: unauthorized (6)`
by removing `-no_nonce` switch from `openssl oscp` command .
 5 years ago
xpac1985 e184a1b9e6
haproxy deploy script now compatible with OpenSSL v1.1+ 
haproxy deploy script now compatible with OpenSSL v1.1+

The OpenSSL OCSP request for haproxy deployment breaks from OpenSSL v1.1.0 on.
The format of the `-header` option has been changed and does now contain a `=` instead of a whitespace.
Other projects have hit the same issue:
https://github.com/nghttp2/nghttp2/issues/742

This commit determines the OpenSSL/LibreSSL version and then adjusts the request accordingly.
Also removed the duplicate command line and added some more debug output.
 5 years ago
neilpang 1a126b700f fix https://github.com/Neilpang/acme.sh/issues/2252 6 years ago
andrewheberle 454c90820d
Actually set reload default 6 years ago
andrewheberle 31d9ba7e02
Change default for reload 6 years ago
andrewheberle 8d348954a7
Whitepspace 7 years ago
andrewheberle 7d19d784df
Update cert suffix for bundles .ocsp generation 7 years ago
andrewheberle 733b4e0a34
Fix Le_Keylength case 7 years ago
andrewheberle 08d29a8342
Fix return from reload 7 years ago
andrewheberle ba20af48d3
Support HAPROXY_DEPLOY_PEM_PATH 
Adds compatibility to original haproxy deploy hook while still allowing custom PEM file name (via HAPROXY_DEPLOY_PEM_NAME)
 7 years ago
andrewheberle 707e053949
whitespace fixes 7 years ago
andrewheberle c47e67e52c
Fix variable name 7 years ago
andrewheberle 6567bb4c12
Update haproxy deploy hook 
Add functionality to add OCSP stapling info (.ocsp file), issuer (.issuer file) and multi-cert bundles (suffix on pem file based on key type).

This also corrects the order of key, certificate and intermediate in the PEM file, which although HAProxy does not seem to care, was incorrect in the prior version.
 7 years ago
Daniel Watrous afe5cb588d
update for POSIX compliance 7 years ago
Daniel Watrous e9e999542d
add reload 7 years ago
Daniel Watrous 5f593994c7
remove more whitespace (trying to get TravisCI working) 7 years ago
Daniel Watrous ec73aeba16
remove whitespace 7 years ago
Daniel Watrous 7573e560b6
Add conditional check to ensure path is provided 7 years ago
Daniel Watrous 360dc140ea
implement basic haproxy deploy 
HAProxy requires the certificate chain and key to be concatenated and placed somewhere (can be anywhere). This script expects a single environment variable with the path where the concatenated PEM file should be written
 7 years ago
neilpang f845b371ce fix format 8 years ago
neilpang 3a1bd3114b add hooks, not implemented yet. 8 years ago