]>
git.proxmox.com Git - mirror_acme.sh.git/log
neil [Wed, 5 May 2021 15:48:37 +0000 (23:48 +0800)]
Merge pull request #3350 from temoffey/deploy-gcore_cdn
Deploy gcore_cdn fix
neilpang [Tue, 4 May 2021 05:32:59 +0000 (13:32 +0800)]
start 2.9.0
neil [Mon, 3 May 2021 09:14:54 +0000 (17:14 +0800)]
minor
neil [Mon, 3 May 2021 09:11:02 +0000 (17:11 +0800)]
fix nginx relative path issue:
https://github.com/acmesh-official/acme.sh/issues/1743
https://github.com/acmesh-official/acme.sh/issues/1914
neil [Mon, 3 May 2021 08:42:09 +0000 (16:42 +0800)]
minor
neil [Mon, 3 May 2021 08:35:42 +0000 (16:35 +0800)]
fix https://github.com/acmesh-official/acme.sh/issues/3487
suppor Ali doh and dnspod doh.
neil [Mon, 3 May 2021 07:57:09 +0000 (15:57 +0800)]
Merge pull request #3498 from tresni/synology_dsm
FIX: Synology sets "default" on wrong certificate
neil [Mon, 3 May 2021 07:52:56 +0000 (15:52 +0800)]
fix https://github.com/acmesh-official/acme.sh/issues/3421
Brian Hartvigsen [Sun, 2 May 2021 19:37:59 +0000 (13:37 -0600)]
FIX: Synology sets "default" on wrong certificate
For some DSM installs, it appears that setting the "default" flag to the
string "false" actually sets it to true. This causes Synology to set
the last updated certificate to be the default certificate. Using an
empty string appears to still be accepted as a false-y value for DSMs
where this isn't happening and corrects the behavior in the cases that
it was.
Credit to @Run-King for identifying the fix and @buxm for reporting.
neilpang [Sun, 2 May 2021 14:20:27 +0000 (22:20 +0800)]
Merge branch 'dev' of https://github.com/acmesh-official/acme.sh into dev
neilpang [Sun, 2 May 2021 14:20:04 +0000 (22:20 +0800)]
upgrade freebsd
neil [Sat, 1 May 2021 14:32:44 +0000 (22:32 +0800)]
fix compatibility issue
neil [Sat, 1 May 2021 02:16:30 +0000 (10:16 +0800)]
Merge pull request #3493 from goekesmi/master
Pass content via printf string format and argument
Jeff Goeke-Smith [Thu, 29 Apr 2021 20:46:32 +0000 (16:46 -0400)]
arguments passed to printf are more generic
On systems that /bin/sh is served by shells other than bash, or
shells that don't implement the same syntax as the bash printf builtin,
printf -- fails to produce the output necessary for standalone operation.
The test case for this was SmartOS, which uses ksh93 as its /bin/sh.
This change uses the more generic method of passing a format parameter
of a single string, and then the argument to replace it with.
neil [Thu, 29 Apr 2021 14:34:11 +0000 (22:34 +0800)]
Merge pull request #3455 from ecm75/notify_fix
fix _exists error message if MAIL_BIN env variable is not set
Eike-Christian Müller [Thu, 29 Apr 2021 10:53:13 +0000 (12:53 +0200)]
more simple mail.sh fix
Reverted the original patch and changed it to the obvious simple solution provided by @Neilpang.
neil [Mon, 19 Apr 2021 01:46:33 +0000 (09:46 +0800)]
Merge pull request #3392 from akulumbeg/dev
Adding DNSAPI wrapper for Websupport webhosting (Slovakia)
neil [Sat, 17 Apr 2021 14:17:35 +0000 (22:17 +0800)]
Merge pull request #3460 from JaZo/feature/aurora
Add Aurora DNS API
neilpang [Sat, 17 Apr 2021 14:09:59 +0000 (22:09 +0800)]
fix format
Jasper Zonneveld [Fri, 26 Mar 2021 13:59:13 +0000 (14:59 +0100)]
Add Aurora DNS API
neilpang [Wed, 14 Apr 2021 14:18:01 +0000 (22:18 +0800)]
fix onecom api
neil [Fri, 9 Apr 2021 02:08:48 +0000 (10:08 +0800)]
Merge pull request #3479 from mjbnz/dev
Update Telegram notification
Mike Beattie [Thu, 8 Apr 2021 04:44:22 +0000 (16:44 +1200)]
Update telegram.sh
(fix shellcheck failure)
Mike Beattie [Thu, 8 Apr 2021 04:38:00 +0000 (16:38 +1200)]
Dump _post() call output to /dev/null
Signed-off-by: Mike Beattie <mike@ethernal.org>
Mike Beattie [Thu, 8 Apr 2021 04:37:27 +0000 (16:37 +1200)]
Add debug output of $_data variable to aid diagnosis
Signed-off-by: Mike Beattie <mike@ethernal.org>
Mike Beattie [Thu, 8 Apr 2021 04:36:42 +0000 (16:36 +1200)]
Escape asterisks in notification content
This messes with markdown parsing
Signed-off-by: Mike Beattie <mike@ethernal.org>
neil [Wed, 7 Apr 2021 14:04:08 +0000 (22:04 +0800)]
Merge pull request #3478 from acmesh-official/dev
sync
neil [Sun, 4 Apr 2021 11:03:33 +0000 (19:03 +0800)]
Merge pull request #3464 from jpbede/cleverreach-deploy-sublient
CleverReach Deploy Hook: Allow deploy to agency subaccounts
Jan-Philipp Benecke [Tue, 30 Mar 2021 07:18:33 +0000 (09:18 +0200)]
Make CI happy
Jan-Philipp Benecke [Tue, 30 Mar 2021 07:13:32 +0000 (09:13 +0200)]
Make uploading cert to subaccount possible
neil [Mon, 29 Mar 2021 14:27:07 +0000 (22:27 +0800)]
Merge pull request #3463 from c35sys/patch-1
Use 'vault kv put' instead of 'vault write'
Christophe Le Guern [Mon, 29 Mar 2021 13:10:14 +0000 (15:10 +0200)]
Use 'vault kv put' instead of 'vault write'
When using vault_cli with a kv2 path, it isn't working. I have the following error:
```
WARNING! The following warnings were returned from Vault:
* Invalid path for a versioned K/V secrets engine. See the API docs for the
appropriate API endpoints to use. If using the Vault CLI, use 'vault kv put'
for this operation.
```
The new way to write data is to use `vault kv put`, it is compatible with kv1 and kv2.
Ref: https://www.vaultproject.io/docs/commands#reading-and-writing-data
```
The original version of K/V used the common read and write operations. A more advanced K/V Version 2 engine was released in Vault 0.10 and introduced the kv get and kv put commands.
```
neil [Sat, 27 Mar 2021 00:10:59 +0000 (08:10 +0800)]
Merge pull request #3445 from woutd/constellix-wildcard-support
Add wildcard certificate support for dns_constellix
Jan-Philipp Benecke [Fri, 26 Mar 2021 14:37:12 +0000 (15:37 +0100)]
Make uploading cert to subaccount possible
wout [Wed, 24 Mar 2021 12:56:14 +0000 (13:56 +0100)]
Workaround for Solaris, as it does not support non-greedy regex
wout [Wed, 24 Mar 2021 08:01:54 +0000 (09:01 +0100)]
Catch the situation when the TXT record is updated with the same value
wout [Tue, 23 Mar 2021 20:20:27 +0000 (21:20 +0100)]
While [0-9]+ is a bit more correct than [0-9]*, the former does not seem to work on Solaris.
emueller [Mon, 22 Mar 2021 14:32:02 +0000 (15:32 +0100)]
fixed formating
emueller [Mon, 22 Mar 2021 14:12:27 +0000 (15:12 +0100)]
fix _exists error message when MAIL_BIN env variable is not set
Alexander Kulumbeg [Sun, 21 Mar 2021 15:25:04 +0000 (16:25 +0100)]
String update
Hopefully the last one
neilpang [Sun, 21 Mar 2021 14:46:35 +0000 (22:46 +0800)]
fix freebsd
qkdreyer [Sat, 13 Mar 2021 13:53:43 +0000 (14:53 +0100)]
fix: prevent rate limit
Quentin Dreyer [Fri, 12 Mar 2021 11:03:36 +0000 (12:03 +0100)]
feat: add dns_porkbun
neil [Sat, 13 Mar 2021 12:46:12 +0000 (20:46 +0800)]
fix format
neil [Sat, 13 Mar 2021 12:43:25 +0000 (20:43 +0800)]
fix https://github.com/acmesh-official/acme.sh/issues/3312
anom-human [Thu, 11 Mar 2021 19:25:49 +0000 (20:25 +0100)]
Update dns_servercow.sh to support wildcard certs
Updated dns_servercow.sh to support txt records with multiple entries. This supports wildcard certificates that require txt records with the same name and different contents.
anom-human [Thu, 11 Mar 2021 18:11:02 +0000 (19:11 +0100)]
Update dns_servercow.sh to support wildcard certs
Updated dns_servercow.sh to support txt records with multiple entries. This supports wildcard certificates that require txt records with the same name and different contents.
neilpang [Thu, 4 Mar 2021 13:50:54 +0000 (21:50 +0800)]
fix format
neilpang [Thu, 4 Mar 2021 13:38:51 +0000 (21:38 +0800)]
fix https://github.com/acmesh-official/acme.sh/issues/3019
neilpang [Mon, 1 Mar 2021 10:13:50 +0000 (18:13 +0800)]
fix https://github.com/acmesh-official/acme.sh/issues/3433
Lukas Brocke [Tue, 23 Feb 2021 18:49:58 +0000 (19:49 +0100)]
dnsapi/ionos: Use POST instead of PATCH for adding TXT record
The API now supports a POST route for adding records. Therefore
checking for already existing records and including them in a PATCH
request is no longer necessary.
neilpang [Wed, 24 Feb 2021 23:45:22 +0000 (07:45 +0800)]
fix https://github.com/acmesh-official/acme.sh/issues/3402
Kristian Johansson [Wed, 24 Feb 2021 16:34:28 +0000 (17:34 +0100)]
Adds comment
Kristian Johansson [Wed, 24 Feb 2021 07:53:35 +0000 (08:53 +0100)]
Fixes response handling and thereby allow issuing of subdomain certs
Geert Hendrickx [Tue, 23 Feb 2021 09:28:17 +0000 (10:28 +0100)]
No need to include EC parameters explicitly with the private key.
(they are embedded)
czeming [Sat, 20 Feb 2021 09:16:33 +0000 (17:16 +0800)]
Update dns_dp.sh
没有encode中文字符会导致提交失败
medmunds [Wed, 17 Feb 2021 19:39:16 +0000 (11:39 -0800)]
Change default SMTP_SECURE to "tls"
Secure by default. Also try to minimize configuration errors.
(Many ESPs/ISPs require STARTTLS, and most support it.)
medmunds [Wed, 17 Feb 2021 18:02:14 +0000 (10:02 -0800)]
Prefer Python to curl when both available
medmunds [Wed, 17 Feb 2021 17:57:44 +0000 (09:57 -0800)]
Use email.policy.default in Python 3 implementation
Improves standards compatibility and utf-8 handling
in Python 3.3-3.8. (email.policy.default becomes the
default in Python 3.9.)
medmunds [Wed, 17 Feb 2021 17:46:13 +0000 (09:46 -0800)]
Add Date email header in Python implementation
medmunds [Tue, 16 Feb 2021 22:41:21 +0000 (14:41 -0800)]
Clarify _readaccountconf_mutable_default
medmunds [Tue, 16 Feb 2021 22:02:09 +0000 (14:02 -0800)]
Clean email headers and warn on unsupported address format
Just in case, make sure CR or NL don't end up in
an email header.
medmunds [Tue, 16 Feb 2021 21:13:26 +0000 (13:13 -0800)]
Implement _rfc2822_date helper
medmunds [Tue, 16 Feb 2021 20:49:27 +0000 (12:49 -0800)]
Rework read/save config to not save default values
Add and use _readaccountconf_mutable_default and
_saveaccountconf_mutable_default helpers to capture
common default value handling.
New approach also eliminates need for separate
underscore-prefixed version of each conf var.
medmunds [Tue, 16 Feb 2021 17:33:39 +0000 (09:33 -0800)]
Add _clearaccountconf_mutable()
medmunds [Mon, 15 Feb 2021 20:23:48 +0000 (12:23 -0800)]
Use PROJECT_NAME and VER for X-Mailer header
Also add X-Mailer header to Python version
neilpang [Mon, 15 Feb 2021 13:35:59 +0000 (21:35 +0800)]
make the fix for rsa key only
neilpang [Mon, 15 Feb 2021 13:25:27 +0000 (21:25 +0800)]
support openssl 3.0
fix https://github.com/acmesh-official/acme.sh/issues/3399
Easton Man [Mon, 15 Feb 2021 07:19:18 +0000 (15:19 +0800)]
fix: fix freebsd and solaris
Easton Man [Mon, 15 Feb 2021 07:18:49 +0000 (15:18 +0800)]
feat: add huaweicloud error handling
Mike Edmunds [Mon, 15 Feb 2021 07:01:21 +0000 (23:01 -0800)]
Fix: Unifi deploy hook support Unifi Cloud Key (#3327)
* fix: unifi deploy hook also update Cloud Key nginx certs
When running on a Unifi Cloud Key device, also deploy to
/etc/ssl/private/cloudkey.{crt,key} and reload nginx. This
makes the new cert available for the Cloud Key management
app running via nginx on port 443 (as well as the port 8443
Unifi Controller app the deploy hook already supported).
Fixes #3326
* Improve settings documentation comments
* Improve Cloud Key pre-flight error messaging
* Fix typo
* Add support for UnifiOS (Cloud Key Gen2)
Since UnifiOS does not use the Java keystore (like a Unifi
Controller or Cloud Key Gen1 deploy), this also reworks
the settings validation and error messaging somewhat.
* PR review fixes
* Detect unsupported Cloud Key java keystore location
* Don't try to restart inactive services
(and remove extra spaces from reload command)
* Clean up error messages and internal variables
* Change to _getdeployconf/_savedeployconf
* Switch from cp to cat to preserve file permissions
medmunds [Mon, 15 Feb 2021 04:06:07 +0000 (20:06 -0800)]
More than one blank line is an abomination, apparently
I will not try to use whitespace to group code visually
medmunds [Mon, 15 Feb 2021 03:56:23 +0000 (19:56 -0800)]
Implement curl version of smtp notify-hook
medmunds [Sun, 14 Feb 2021 23:47:51 +0000 (15:47 -0800)]
Prep for curl or Python; clean up SMTP_* variable usage
medmunds [Mon, 11 Jan 2021 20:59:51 +0000 (12:59 -0800)]
Add instructions for reporting bugs
medmunds [Mon, 11 Jan 2021 19:46:26 +0000 (11:46 -0800)]
Only save config if send is successful
medmunds [Wed, 30 Dec 2020 01:10:36 +0000 (17:10 -0800)]
Make shfmt happy
(I'm open to better ways of formatting the heredoc
that embeds the Python script.)
medmunds [Wed, 30 Dec 2020 00:28:38 +0000 (16:28 -0800)]
Implement smtp notify hook
Support notifications via direct SMTP server connection.
Uses Python (2.7.x or 3.4+) to communicate with SMTP server.
jerrm [Sat, 13 Feb 2021 10:58:44 +0000 (05:58 -0500)]
duckdns - fix "integer expression expected" errors (#3397)
* fix "integer expression expected" errors
* duckdns fix
* Update dns_duckdns.sh
* Update dns_duckdns.sh
neilpang [Sat, 13 Feb 2021 09:27:22 +0000 (17:27 +0800)]
upgrade freebsd and solaris
neil [Sat, 13 Feb 2021 08:22:31 +0000 (16:22 +0800)]
Chain (#3408)
* fix https://github.com/acmesh-official/acme.sh/issues/3384
match the issuer to the root CA cert subject
* fix format
* fix https://github.com/acmesh-official/acme.sh/issues/3384
* remove the alt files. https://github.com/acmesh-official/acme.sh/issues/3384
manuel [Thu, 11 Feb 2021 10:20:18 +0000 (11:20 +0100)]
dnsapi/pdns: also normalize json response in detecting root zone
Gnought [Wed, 10 Feb 2021 17:08:08 +0000 (01:08 +0800)]
Updated --preferred-chain to issue ISRG properly
To support different openssl crl2pkcs7 help cli format
Vahid Fardi [Tue, 5 Jan 2021 18:01:31 +0000 (21:31 +0330)]
change name actor
Vahid Fardi [Tue, 5 Jan 2021 13:40:41 +0000 (17:10 +0330)]
change Author name
Vahid Fardi [Tue, 5 Jan 2021 11:59:08 +0000 (15:29 +0330)]
change arvan api script
Alexander Kulumbeg [Sun, 21 Mar 2021 15:16:38 +0000 (16:16 +0100)]
Revert "Syncing with the original repo (#2)"
This reverts commit
c384ed960c138f4449e79293644c4d0ec937cef1 .
neilpang [Sun, 21 Mar 2021 14:46:35 +0000 (22:46 +0800)]
fix freebsd
Alexander Kulumbeg [Sat, 20 Mar 2021 15:01:09 +0000 (16:01 +0100)]
Syncing with the original repo (#2)
* change arvan api script
* change Author name
* change name actor
* Updated --preferred-chain to issue ISRG properly
To support different openssl crl2pkcs7 help cli format
* dnsapi/pdns: also normalize json response in detecting root zone
* Chain (#3408)
* fix https://github.com/acmesh-official/acme.sh/issues/3384
match the issuer to the root CA cert subject
* fix format
* fix https://github.com/acmesh-official/acme.sh/issues/3384
* remove the alt files. https://github.com/acmesh-official/acme.sh/issues/3384
* upgrade freebsd and solaris
* duckdns - fix "integer expression expected" errors (#3397)
* fix "integer expression expected" errors
* duckdns fix
* Update dns_duckdns.sh
* Update dns_duckdns.sh
* Implement smtp notify hook
Support notifications via direct SMTP server connection.
Uses Python (2.7.x or 3.4+) to communicate with SMTP server.
* Make shfmt happy
(I'm open to better ways of formatting the heredoc
that embeds the Python script.)
* Only save config if send is successful
* Add instructions for reporting bugs
* Prep for curl or Python; clean up SMTP_* variable usage
* Implement curl version of smtp notify-hook
* More than one blank line is an abomination, apparently
I will not try to use whitespace to group code visually
* Fix: Unifi deploy hook support Unifi Cloud Key (#3327)
* fix: unifi deploy hook also update Cloud Key nginx certs
When running on a Unifi Cloud Key device, also deploy to
/etc/ssl/private/cloudkey.{crt,key} and reload nginx. This
makes the new cert available for the Cloud Key management
app running via nginx on port 443 (as well as the port 8443
Unifi Controller app the deploy hook already supported).
Fixes #3326
* Improve settings documentation comments
* Improve Cloud Key pre-flight error messaging
* Fix typo
* Add support for UnifiOS (Cloud Key Gen2)
Since UnifiOS does not use the Java keystore (like a Unifi
Controller or Cloud Key Gen1 deploy), this also reworks
the settings validation and error messaging somewhat.
* PR review fixes
* Detect unsupported Cloud Key java keystore location
* Don't try to restart inactive services
(and remove extra spaces from reload command)
* Clean up error messages and internal variables
* Change to _getdeployconf/_savedeployconf
* Switch from cp to cat to preserve file permissions
* feat: add huaweicloud error handling
* fix: fix freebsd and solaris
* support openssl 3.0
fix https://github.com/acmesh-official/acme.sh/issues/3399
* make the fix for rsa key only
* Use PROJECT_NAME and VER for X-Mailer header
Also add X-Mailer header to Python version
* Add _clearaccountconf_mutable()
* Rework read/save config to not save default values
Add and use _readaccountconf_mutable_default and
_saveaccountconf_mutable_default helpers to capture
common default value handling.
New approach also eliminates need for separate
underscore-prefixed version of each conf var.
* Implement _rfc2822_date helper
* Clean email headers and warn on unsupported address format
Just in case, make sure CR or NL don't end up in
an email header.
* Clarify _readaccountconf_mutable_default
* Add Date email header in Python implementation
* Use email.policy.default in Python 3 implementation
Improves standards compatibility and utf-8 handling
in Python 3.3-3.8. (email.policy.default becomes the
default in Python 3.9.)
* Prefer Python to curl when both available
* Change default SMTP_SECURE to "tls"
Secure by default. Also try to minimize configuration errors.
(Many ESPs/ISPs require STARTTLS, and most support it.)
* Update dns_dp.sh
没有encode中文字符会导致提交失败
* No need to include EC parameters explicitly with the private key.
(they are embedded)
* Fixes response handling and thereby allow issuing of subdomain certs
* Adds comment
* fix https://github.com/acmesh-official/acme.sh/issues/3402
* dnsapi/ionos: Use POST instead of PATCH for adding TXT record
The API now supports a POST route for adding records. Therefore
checking for already existing records and including them in a PATCH
request is no longer necessary.
* fix https://github.com/acmesh-official/acme.sh/issues/3433
* fix https://github.com/acmesh-official/acme.sh/issues/3019
* fix format
* Update dns_servercow.sh to support wildcard certs
Updated dns_servercow.sh to support txt records with multiple entries. This supports wildcard certificates that require txt records with the same name and different contents.
* Update dns_servercow.sh to support wildcard certs
Updated dns_servercow.sh to support txt records with multiple entries. This supports wildcard certificates that require txt records with the same name and different contents.
* fix https://github.com/acmesh-official/acme.sh/issues/3312
* fix format
* feat: add dns_porkbun
* fix: prevent rate limit
Co-authored-by: Vahid Fardi <vahid.fardi@snapp.cab>
Co-authored-by: neil <github@neilpang.com>
Co-authored-by: Gnought <1684105+gnought@users.noreply.github.com>
Co-authored-by: manuel <manuel@mausz.at>
Co-authored-by: jerrm <jerrm@users.noreply.github.com>
Co-authored-by: medmunds <medmunds@gmail.com>
Co-authored-by: Mike Edmunds <github@to.mikeedmunds.com>
Co-authored-by: Easton Man <manyang.me@outlook.com>
Co-authored-by: czeming <loser_wind@163.com>
Co-authored-by: Geert Hendrickx <geert@hendrickx.be>
Co-authored-by: Kristian Johansson <kristian.johansson86@gmail.com>
Co-authored-by: Lukas Brocke <lukas@brocke.net>
Co-authored-by: anom-human <80478363+anom-human@users.noreply.github.com>
Co-authored-by: neil <win10@neilpang.com>
Co-authored-by: Quentin Dreyer <quentin.dreyer@rgsystem.com>
Alexander Kulumbeg [Sat, 20 Mar 2021 14:26:32 +0000 (15:26 +0100)]
String change
wout [Sun, 14 Mar 2021 14:54:28 +0000 (15:54 +0100)]
Retrigger checks
wout [Sun, 14 Mar 2021 14:50:16 +0000 (15:50 +0100)]
Retrigger checks
neil [Sun, 14 Mar 2021 01:22:18 +0000 (09:22 +0800)]
Merge pull request #3448 from qkdreyer/dev
Create dns_porkbun.sh
qkdreyer [Sat, 13 Mar 2021 13:53:43 +0000 (14:53 +0100)]
fix: prevent rate limit
Quentin Dreyer [Fri, 12 Mar 2021 11:03:36 +0000 (12:03 +0100)]
feat: add dns_porkbun
neil [Sat, 13 Mar 2021 12:46:12 +0000 (20:46 +0800)]
fix format
neil [Sat, 13 Mar 2021 12:43:25 +0000 (20:43 +0800)]
fix https://github.com/acmesh-official/acme.sh/issues/3312
neil [Sat, 13 Mar 2021 12:42:12 +0000 (20:42 +0800)]
Merge pull request #3449 from anom-human/master
Update dns_servercow.sh to support wildcard certs
anom-human [Thu, 11 Mar 2021 19:25:49 +0000 (20:25 +0100)]
Update dns_servercow.sh to support wildcard certs
Updated dns_servercow.sh to support txt records with multiple entries. This supports wildcard certificates that require txt records with the same name and different contents.
anom-human [Thu, 11 Mar 2021 18:11:02 +0000 (19:11 +0100)]
Update dns_servercow.sh to support wildcard certs
Updated dns_servercow.sh to support txt records with multiple entries. This supports wildcard certificates that require txt records with the same name and different contents.