git.proxmox.com Git - pmg-api.git/commit

]> git.proxmox.com Git - pmg-api.git/commit

author	Stoiko Ivanov <s.ivanov@proxmox.com>
	Thu, 15 Apr 2021 19:46:18 +0000 (21:46 +0200)
committer	Thomas Lamprecht <t.lamprecht@proxmox.com>
	Tue, 13 Jul 2021 08:01:43 +0000 (10:01 +0200)
commit	fe0886a97566a53b39e64a6dc8d27dc6404ac2b3
tree	0eb7d5fdb45a94adf37696d3fc14200b0ab3d127	tree
parent	7266d5fd320c01c6d6f23bec4061d0c896d7d064	commit \| diff

acme: handle wildcard dns validation

Wildcard DNS names (*.domain.example) are validated through their
base-domain (domain.example) according to the ACME RFC [0].

We store the indirection while parsing the acme config, and check for
an extra validation target during ordering.

This makes it possible to order wildcard certificates which are not
valid for the base-domain.

[0] https://tools.ietf.org/html/rfc8555#section-7.1.3

Signed-off-by: Stoiko Ivanov <s.ivanov@proxmox.com>

src/PMG/API2/Certificates.pm		diff \| blob \| blame \| history
src/PMG/NodeConfig.pm		diff \| blob \| blame \| history

PMG API

RSS Atom