]>
git.proxmox.com Git - mirror_acme.sh.git/log
Mike Edmunds [Mon, 15 Feb 2021 07:01:21 +0000 (23:01 -0800)]
Fix: Unifi deploy hook support Unifi Cloud Key (#3327)
* fix: unifi deploy hook also update Cloud Key nginx certs
When running on a Unifi Cloud Key device, also deploy to
/etc/ssl/private/cloudkey.{crt,key} and reload nginx. This
makes the new cert available for the Cloud Key management
app running via nginx on port 443 (as well as the port 8443
Unifi Controller app the deploy hook already supported).
Fixes #3326
* Improve settings documentation comments
* Improve Cloud Key pre-flight error messaging
* Fix typo
* Add support for UnifiOS (Cloud Key Gen2)
Since UnifiOS does not use the Java keystore (like a Unifi
Controller or Cloud Key Gen1 deploy), this also reworks
the settings validation and error messaging somewhat.
* PR review fixes
* Detect unsupported Cloud Key java keystore location
* Don't try to restart inactive services
(and remove extra spaces from reload command)
* Clean up error messages and internal variables
* Change to _getdeployconf/_savedeployconf
* Switch from cp to cat to preserve file permissions
medmunds [Mon, 15 Feb 2021 04:06:07 +0000 (20:06 -0800)]
More than one blank line is an abomination, apparently
I will not try to use whitespace to group code visually
medmunds [Mon, 15 Feb 2021 03:56:23 +0000 (19:56 -0800)]
Implement curl version of smtp notify-hook
medmunds [Sun, 14 Feb 2021 23:47:51 +0000 (15:47 -0800)]
Prep for curl or Python; clean up SMTP_* variable usage
medmunds [Mon, 11 Jan 2021 20:59:51 +0000 (12:59 -0800)]
Add instructions for reporting bugs
medmunds [Mon, 11 Jan 2021 19:46:26 +0000 (11:46 -0800)]
Only save config if send is successful
medmunds [Wed, 30 Dec 2020 01:10:36 +0000 (17:10 -0800)]
Make shfmt happy
(I'm open to better ways of formatting the heredoc
that embeds the Python script.)
medmunds [Wed, 30 Dec 2020 00:28:38 +0000 (16:28 -0800)]
Implement smtp notify hook
Support notifications via direct SMTP server connection.
Uses Python (2.7.x or 3.4+) to communicate with SMTP server.
jerrm [Sat, 13 Feb 2021 10:58:44 +0000 (05:58 -0500)]
duckdns - fix "integer expression expected" errors (#3397)
* fix "integer expression expected" errors
* duckdns fix
* Update dns_duckdns.sh
* Update dns_duckdns.sh
neilpang [Sat, 13 Feb 2021 09:27:22 +0000 (17:27 +0800)]
upgrade freebsd and solaris
neil [Sat, 13 Feb 2021 08:22:31 +0000 (16:22 +0800)]
Chain (#3408)
* fix https://github.com/acmesh-official/acme.sh/issues/3384
match the issuer to the root CA cert subject
* fix format
* fix https://github.com/acmesh-official/acme.sh/issues/3384
* remove the alt files. https://github.com/acmesh-official/acme.sh/issues/3384
manuel [Thu, 11 Feb 2021 10:20:18 +0000 (11:20 +0100)]
dnsapi/pdns: also normalize json response in detecting root zone
Gnought [Wed, 10 Feb 2021 17:08:08 +0000 (01:08 +0800)]
Updated --preferred-chain to issue ISRG properly
To support different openssl crl2pkcs7 help cli format
Vahid Fardi [Tue, 5 Jan 2021 18:01:31 +0000 (21:31 +0330)]
change name actor
Vahid Fardi [Tue, 5 Jan 2021 13:40:41 +0000 (17:10 +0330)]
change Author name
Vahid Fardi [Tue, 5 Jan 2021 11:59:08 +0000 (15:29 +0330)]
change arvan api script
Alexander Kulumbeg [Sun, 21 Mar 2021 15:16:38 +0000 (16:16 +0100)]
Revert "Syncing with the original repo (#2)"
This reverts commit
c384ed960c138f4449e79293644c4d0ec937cef1 .
Alexander Kulumbeg [Sat, 20 Mar 2021 15:01:09 +0000 (16:01 +0100)]
Syncing with the original repo (#2)
* change arvan api script
* change Author name
* change name actor
* Updated --preferred-chain to issue ISRG properly
To support different openssl crl2pkcs7 help cli format
* dnsapi/pdns: also normalize json response in detecting root zone
* Chain (#3408)
* fix https://github.com/acmesh-official/acme.sh/issues/3384
match the issuer to the root CA cert subject
* fix format
* fix https://github.com/acmesh-official/acme.sh/issues/3384
* remove the alt files. https://github.com/acmesh-official/acme.sh/issues/3384
* upgrade freebsd and solaris
* duckdns - fix "integer expression expected" errors (#3397)
* fix "integer expression expected" errors
* duckdns fix
* Update dns_duckdns.sh
* Update dns_duckdns.sh
* Implement smtp notify hook
Support notifications via direct SMTP server connection.
Uses Python (2.7.x or 3.4+) to communicate with SMTP server.
* Make shfmt happy
(I'm open to better ways of formatting the heredoc
that embeds the Python script.)
* Only save config if send is successful
* Add instructions for reporting bugs
* Prep for curl or Python; clean up SMTP_* variable usage
* Implement curl version of smtp notify-hook
* More than one blank line is an abomination, apparently
I will not try to use whitespace to group code visually
* Fix: Unifi deploy hook support Unifi Cloud Key (#3327)
* fix: unifi deploy hook also update Cloud Key nginx certs
When running on a Unifi Cloud Key device, also deploy to
/etc/ssl/private/cloudkey.{crt,key} and reload nginx. This
makes the new cert available for the Cloud Key management
app running via nginx on port 443 (as well as the port 8443
Unifi Controller app the deploy hook already supported).
Fixes #3326
* Improve settings documentation comments
* Improve Cloud Key pre-flight error messaging
* Fix typo
* Add support for UnifiOS (Cloud Key Gen2)
Since UnifiOS does not use the Java keystore (like a Unifi
Controller or Cloud Key Gen1 deploy), this also reworks
the settings validation and error messaging somewhat.
* PR review fixes
* Detect unsupported Cloud Key java keystore location
* Don't try to restart inactive services
(and remove extra spaces from reload command)
* Clean up error messages and internal variables
* Change to _getdeployconf/_savedeployconf
* Switch from cp to cat to preserve file permissions
* feat: add huaweicloud error handling
* fix: fix freebsd and solaris
* support openssl 3.0
fix https://github.com/acmesh-official/acme.sh/issues/3399
* make the fix for rsa key only
* Use PROJECT_NAME and VER for X-Mailer header
Also add X-Mailer header to Python version
* Add _clearaccountconf_mutable()
* Rework read/save config to not save default values
Add and use _readaccountconf_mutable_default and
_saveaccountconf_mutable_default helpers to capture
common default value handling.
New approach also eliminates need for separate
underscore-prefixed version of each conf var.
* Implement _rfc2822_date helper
* Clean email headers and warn on unsupported address format
Just in case, make sure CR or NL don't end up in
an email header.
* Clarify _readaccountconf_mutable_default
* Add Date email header in Python implementation
* Use email.policy.default in Python 3 implementation
Improves standards compatibility and utf-8 handling
in Python 3.3-3.8. (email.policy.default becomes the
default in Python 3.9.)
* Prefer Python to curl when both available
* Change default SMTP_SECURE to "tls"
Secure by default. Also try to minimize configuration errors.
(Many ESPs/ISPs require STARTTLS, and most support it.)
* Update dns_dp.sh
没有encode中文字符会导致提交失败
* No need to include EC parameters explicitly with the private key.
(they are embedded)
* Fixes response handling and thereby allow issuing of subdomain certs
* Adds comment
* fix https://github.com/acmesh-official/acme.sh/issues/3402
* dnsapi/ionos: Use POST instead of PATCH for adding TXT record
The API now supports a POST route for adding records. Therefore
checking for already existing records and including them in a PATCH
request is no longer necessary.
* fix https://github.com/acmesh-official/acme.sh/issues/3433
* fix https://github.com/acmesh-official/acme.sh/issues/3019
* fix format
* Update dns_servercow.sh to support wildcard certs
Updated dns_servercow.sh to support txt records with multiple entries. This supports wildcard certificates that require txt records with the same name and different contents.
* Update dns_servercow.sh to support wildcard certs
Updated dns_servercow.sh to support txt records with multiple entries. This supports wildcard certificates that require txt records with the same name and different contents.
* fix https://github.com/acmesh-official/acme.sh/issues/3312
* fix format
* feat: add dns_porkbun
* fix: prevent rate limit
Co-authored-by: Vahid Fardi <vahid.fardi@snapp.cab>
Co-authored-by: neil <github@neilpang.com>
Co-authored-by: Gnought <1684105+gnought@users.noreply.github.com>
Co-authored-by: manuel <manuel@mausz.at>
Co-authored-by: jerrm <jerrm@users.noreply.github.com>
Co-authored-by: medmunds <medmunds@gmail.com>
Co-authored-by: Mike Edmunds <github@to.mikeedmunds.com>
Co-authored-by: Easton Man <manyang.me@outlook.com>
Co-authored-by: czeming <loser_wind@163.com>
Co-authored-by: Geert Hendrickx <geert@hendrickx.be>
Co-authored-by: Kristian Johansson <kristian.johansson86@gmail.com>
Co-authored-by: Lukas Brocke <lukas@brocke.net>
Co-authored-by: anom-human <80478363+anom-human@users.noreply.github.com>
Co-authored-by: neil <win10@neilpang.com>
Co-authored-by: Quentin Dreyer <quentin.dreyer@rgsystem.com>
Alexander Kulumbeg [Sat, 20 Mar 2021 14:26:32 +0000 (15:26 +0100)]
String change
Alexander Kulumbeg [Thu, 4 Feb 2021 18:03:35 +0000 (19:03 +0100)]
Final try, leaving _hmac as before
Alexander Kulumbeg [Thu, 4 Feb 2021 17:38:40 +0000 (18:38 +0100)]
Update dns_websupport.sh
Alexander Kulumbeg [Thu, 4 Feb 2021 16:27:39 +0000 (17:27 +0100)]
Changing the _hmac auth back
It only works this way, apparently
Alexander Kulumbeg [Thu, 4 Feb 2021 16:21:33 +0000 (17:21 +0100)]
added hex param to _hmac
but removed "printf "s%" ...
Alexander Kulumbeg [Thu, 4 Feb 2021 16:15:22 +0000 (17:15 +0100)]
Update dns_websupport.sh
Alexander Kulumbeg [Thu, 4 Feb 2021 14:32:51 +0000 (15:32 +0100)]
Changing the _hmac call into Neil's suggestion
Alexander Kulumbeg [Thu, 4 Feb 2021 14:22:53 +0000 (15:22 +0100)]
Trying the original solution
_hmac sha1 "$(printf "%s" "$WS_ApiSecret" | _hex_dump | tr -d " ")" hex)
Alexander Kulumbeg [Thu, 4 Feb 2021 14:18:39 +0000 (15:18 +0100)]
adding the hex parameter to _hmac call
Alexander Kulumbeg [Thu, 4 Feb 2021 14:15:17 +0000 (15:15 +0100)]
Typo
Forgot a quotation mark on line 161
Alexander Kulumbeg [Thu, 4 Feb 2021 14:11:53 +0000 (15:11 +0100)]
Implementing/testing Neil's suggestions
Alexander Kulumbeg [Thu, 4 Feb 2021 10:18:22 +0000 (11:18 +0100)]
Testing double 2>/dev/null into _utc_date with sed
Alexander Kulumbeg [Thu, 4 Feb 2021 10:15:13 +0000 (11:15 +0100)]
2>/dev/null/ to 2>/dev/null
Silly mistake with a "/" -.-
Alexander Kulumbeg [Thu, 4 Feb 2021 09:13:36 +0000 (10:13 +0100)]
Extra test - adding date -u -d
Adding this to at least partially prevent the virtually nonexistent possibility of timestamp and _utc_date() mismatch. If the normal date -u -d does not get converted (looking at you Solaris!), the poor man's method with manipulating the _utc_date() string output kicks in.
Alexander Kulumbeg [Wed, 3 Feb 2021 23:31:46 +0000 (00:31 +0100)]
Fixing the shebang accident
Alexander Kulumbeg [Wed, 3 Feb 2021 23:21:08 +0000 (00:21 +0100)]
sed workaround for "datez"
Alexander Kulumbeg [Mon, 1 Feb 2021 19:43:22 +0000 (20:43 +0100)]
And again
Alexander Kulumbeg [Mon, 1 Feb 2021 19:31:05 +0000 (20:31 +0100)]
Yet another Solaris test
Alexander Kulumbeg [Mon, 1 Feb 2021 17:37:17 +0000 (18:37 +0100)]
Testing datez change for Solaris
Alexander Kulumbeg [Mon, 1 Feb 2021 17:16:15 +0000 (18:16 +0100)]
Fix comments, error msg and time formatting
Alexander Kulumbeg [Sun, 31 Jan 2021 23:30:36 +0000 (00:30 +0100)]
"datez" var and comments
Alexander Kulumbeg [Sun, 31 Jan 2021 21:25:13 +0000 (22:25 +0100)]
Update dns_websupport.sh
Alexander Kulumbeg [Sun, 31 Jan 2021 21:16:00 +0000 (22:16 +0100)]
Simplified approach for the HMAC method
Alexander Kulumbeg [Sun, 31 Jan 2021 21:04:53 +0000 (22:04 +0100)]
Added a forgotten ")"
Alexander Kulumbeg [Sun, 31 Jan 2021 21:02:11 +0000 (22:02 +0100)]
Testing HMAC
Alexander Kulumbeg [Sat, 30 Jan 2021 10:09:39 +0000 (11:09 +0100)]
Catching up with the current state of things
Catching up with the current state of things
neil [Sat, 30 Jan 2021 04:05:23 +0000 (12:05 +0800)]
fix format
neil [Sat, 30 Jan 2021 03:44:42 +0000 (11:44 +0800)]
update readme
neil [Sat, 30 Jan 2021 03:27:18 +0000 (11:27 +0800)]
fix online install (#3385)
neil [Tue, 26 Jan 2021 14:10:53 +0000 (22:10 +0800)]
fix docker build (#3383)
* fix dockerhub
* fix
Co-authored-by: neil <win10@neilpang.com>
neil [Tue, 26 Jan 2021 11:10:23 +0000 (19:10 +0800)]
Merge pull request #3381 from dgasaway/patch-1
Change ipconfig.co to ifconfig.co
Alexander Kulumbeg [Mon, 25 Jan 2021 21:10:27 +0000 (22:10 +0100)]
Update dns_websupport.sh
Alexander Kulumbeg [Mon, 25 Jan 2021 21:01:41 +0000 (22:01 +0100)]
Update dns_websupport.sh
Alexander Kulumbeg [Mon, 25 Jan 2021 20:55:07 +0000 (21:55 +0100)]
Test original implementation by trgosk
dgasaway [Mon, 25 Jan 2021 19:46:52 +0000 (11:46 -0800)]
Change ipconfig.co to ifconfig.co
URL https://ipconfig.co/ip does not currently work, and since https://ifconfig.co/ip is mentioned on the DNS API wiki page, I assume these messages were a typo.
neil [Fri, 22 Jan 2021 01:22:41 +0000 (09:22 +0800)]
Merge pull request #3378 from mayswind/master
update dnspod.com api
neil [Fri, 22 Jan 2021 01:21:25 +0000 (09:21 +0800)]
Merge pull request #3377 from lbrocke/dns-api-ionos
Add IONOS API support
Lukas Brocke [Thu, 21 Jan 2021 15:10:10 +0000 (16:10 +0100)]
dnsapi/ionos: Change to root zone finding algorithm
MaysWind [Thu, 21 Jan 2021 14:15:23 +0000 (22:15 +0800)]
update dnspod.com api
Lukas Brocke [Wed, 20 Jan 2021 20:08:58 +0000 (21:08 +0100)]
dnsapi/ionos: Fixes for Solaris
Lukas Brocke [Mon, 18 Jan 2021 13:35:08 +0000 (14:35 +0100)]
dnsapi/ionos: Add support for v2 wildcard certificates
neil [Sat, 16 Jan 2021 15:50:57 +0000 (23:50 +0800)]
fix format
neil [Sat, 16 Jan 2021 15:36:59 +0000 (23:36 +0800)]
Merge pull request #3365 from pssara/hotfix/dns_ispconfig.sh-3239-2696
Fixed issue 3239 and 2696 with ISP config
neil [Sat, 16 Jan 2021 05:26:43 +0000 (13:26 +0800)]
Merge pull request #3343 from markchalloner/master
Add Peplink deploy hook
pssara [Fri, 15 Jan 2021 14:12:53 +0000 (15:12 +0100)]
Fixed issue with ISP config where the Client ID was asumed to be the same as the SYS User ID
Mark Challoner [Wed, 6 Jan 2021 20:20:21 +0000 (20:20 +0000)]
Add Peplink deploy hook
neil [Tue, 12 Jan 2021 01:32:07 +0000 (09:32 +0800)]
Merge pull request #3333 from mjbnz/patch-1
Add Telegram notify hook
neil [Mon, 11 Jan 2021 14:00:45 +0000 (22:00 +0800)]
Merge pull request #3352 from senjoo/master
Added RackCorp API Integration
Stephen Dendtler [Mon, 11 Jan 2021 13:03:42 +0000 (13:03 +0000)]
_get_root now does not skip the first label of the domain
Mike Beattie [Sun, 10 Jan 2021 22:27:39 +0000 (11:27 +1300)]
Avoid usage of sed -e
Mike Beattie [Sun, 10 Jan 2021 22:21:46 +0000 (11:21 +1300)]
Correct shebang
Stephen Dendtler [Sun, 10 Jan 2021 11:19:16 +0000 (11:19 +0000)]
Added RackCorp API Integration
neil [Sun, 10 Jan 2021 03:47:54 +0000 (11:47 +0800)]
fix https://github.com/acmesh-official/acme.sh/issues/3156
neil [Sun, 10 Jan 2021 03:06:44 +0000 (11:06 +0800)]
Merge pull request #3347 from JamesTheAwesomeDude/master
Update README to reflect the fact that this is a general-purpose ACME client
neil [Sun, 10 Jan 2021 02:48:51 +0000 (10:48 +0800)]
Merge pull request #3349 from acmesh-official/dev
sync
James Edington [Fri, 8 Jan 2021 18:14:39 +0000 (11:14 -0700)]
This is a general-purpose ACME client. We should be proud of this.
Mike Beattie [Mon, 4 Jan 2021 05:41:02 +0000 (18:41 +1300)]
Add Telegram notification script
Requires:
- API Token for a bot created with the Telegram Bot Father.
- A Chat ID for a user/group that the bot has permission to post to.
neil [Sat, 2 Jan 2021 14:29:54 +0000 (22:29 +0800)]
Merge pull request #3307 from jimp100/patch-1
Corrected regex for duckdns subdomains
neil [Mon, 28 Dec 2020 13:10:22 +0000 (21:10 +0800)]
add libidn
Lukas Brocke [Thu, 24 Dec 2020 12:06:07 +0000 (13:06 +0100)]
dnsapi/ionos: Run shfmt
Lukas Brocke [Thu, 24 Dec 2020 10:03:25 +0000 (11:03 +0100)]
dnsapi/ionos: Add API support for IONOS DNS API
The IONOS DNS API is in beta state, please read [1] on how to get
started.
PLEASE NOTE: The v2 wildcard certification creation [2] is not yet
supported as the IONOS API doesn't allow the creation of multiple TXT
records with the same domain name.
[1] https://beta.developer.hosting.ionos.de/docs/getstarted
[2] https://github.com/acmesh-official/acme.sh/issues/1261
neil [Wed, 23 Dec 2020 12:45:43 +0000 (20:45 +0800)]
add dns check wiki
neil [Tue, 22 Dec 2020 14:47:01 +0000 (22:47 +0800)]
Merge pull request #3313 from NerLOR/master
World4You Bugfix unable to parse paketnr
neil [Tue, 22 Dec 2020 14:45:22 +0000 (22:45 +0800)]
Merge pull request #3299 from tresni/synology_dsm
Add DSM7 support to synology_dsm deployhook
Lorenz Stechauner [Mon, 21 Dec 2020 08:41:05 +0000 (09:41 +0100)]
World4You shellcheck
Lorenz Stechauner [Mon, 21 Dec 2020 08:39:09 +0000 (09:39 +0100)]
World4You code refactor
Lorenz Stechauner [Sun, 20 Dec 2020 19:17:05 +0000 (20:17 +0100)]
World4You Bugfix unable to parse paketnr
neil [Thu, 17 Dec 2020 14:16:22 +0000 (22:16 +0800)]
Merge pull request #3289 from vanonox/addScaleway
Add scaleway provider
jimp100 [Wed, 16 Dec 2020 10:11:43 +0000 (10:11 +0000)]
Corrected regex for subdomains
A fix to handle subdomains of a duckdns domain. I.e. subdomain.mydomain.duckdns.org
Handles n number of subdomains
neil [Thu, 10 Dec 2020 12:21:57 +0000 (20:21 +0800)]
fix https://github.com/acmesh-official/acme.sh/issues/3300
Brian Hartvigsen [Thu, 10 Dec 2020 04:01:44 +0000 (21:01 -0700)]
Shellcheck linting
Also removed unused code
Brian Hartvigsen [Thu, 10 Dec 2020 03:35:50 +0000 (20:35 -0700)]
Support DSM 6 and 7
Small changes for DSM 6:
All fields (except enable_syno_token as explained below) must either be in the GET params or the POST params, you can't mix GET and POST params
enable_syno_token=yes must be in both the GET and POST params.
If enable_syno_token=yes is only in the POST fields, then DSM6 returns a synotoken of --------. If enable_syno_token=yes is only in the GET params, then it returns no synotoken at all. It must be in both to work.
Need to use /webapi/auth.cgi instead of /webapi/entry.cgi
Verified with DSM 6.2.3-25426 Update 2 and DSM 7.0-40850
Thijn [Wed, 9 Dec 2020 10:45:25 +0000 (11:45 +0100)]
Fix synology_dsm deployhook for DSM 7
Brian Hartvigsen [Sun, 27 Sep 2020 01:38:18 +0000 (19:38 -0600)]
Use POST for login
This allows us to get the cookie and the token (as it appears to be only in the body in DSM 7.) HTTP_HEADERS is only guarenteed to be output with POST for both wget and curl.
Van Hau TRAN [Tue, 8 Dec 2020 15:32:31 +0000 (16:32 +0100)]
fix: fix delete txt record and error mngtt
neil [Tue, 8 Dec 2020 09:43:10 +0000 (17:43 +0800)]
Merge pull request #3287 from nate1010smith/dev
Correct sed regex
neil [Mon, 7 Dec 2020 14:01:30 +0000 (22:01 +0800)]
fix
neil [Mon, 7 Dec 2020 13:42:31 +0000 (21:42 +0800)]
fix
neil [Mon, 7 Dec 2020 13:41:08 +0000 (21:41 +0800)]
fix
neil [Mon, 7 Dec 2020 13:31:02 +0000 (21:31 +0800)]
start 2.8.9
Van Hau TRAN [Sun, 6 Dec 2020 22:20:41 +0000 (23:20 +0100)]
fix: shell if
Van Hau TRAN [Sun, 6 Dec 2020 22:14:25 +0000 (23:14 +0100)]
feat: add comment and configure workflow ci test