neil
f9a1b64116
remove sudo from crontab
9 years ago
Travis Lee
69b67e4015
change "openssl sha" to "openssl dgst"
9 years ago
neil
02c0453b71
support customized standalone server port for servers, that is behind HAProxy or load balance, default is 80.
9 years ago
neil
1add47a6b6
support ECC key, ECDSA certificate
9 years ago
neil
0f71a9fe96
Use openssl dgst -sha256 instead of openssl sha
9 years ago
Thomas
2c06a14d19
renew() should return the function result code of issue()
currently the renew function does always return 0 even when the cert issuing failed. for now just return the function return code of issue().
maybe an additional offset (like +100) should be added to distinguish the issue error codes from the renew error codes.
9 years ago
neil
0809486529
support cloudxns.com api
9 years ago
neil
ce56c1bbfc
generate default sample account.conf for the first time install
9 years ago
neil
b47723adbb
minor, renewAll skip 'dnsapi' folder.
9 years ago
neil
7e3cbb4661
fix issue, decode the error message.
9 years ago
neil
94917d1e0b
load account.conf at a earlier time, so that "STAGE" macro can be placed in the conf file.
9 years ago
Neil
55ce170842
remove unnecessary error message if the folder is not a domain
remove unnecessary error message if the folder is not a domain.
The error message output made the cron send mail.
9 years ago
neil
b4e2604c82
info: Close and reopen your terminal to start using le
9 years ago
neil
bf3135ef84
add alias after install
9 years ago
neil
4ac8d68d06
uninstall alias
9 years ago
neil
525997ee04
do not write /usr/loca/bin/ anymore. install to home.
9 years ago
neil
b25d22b05a
keep compatible
9 years ago
neil
e9209938cb
support account config file to save dns api key
9 years ago
neil
a28b3a653c
install dnsapi
9 years ago
neil
0ed4c9391e
sleep to wait dns record to take effect.
9 years ago
neil
611f687739
dnsapi folder
9 years ago
neil
b4a156da60
install dnsapi
9 years ago
neil
175c9decd7
init dnsapi
9 years ago
neil
bb2294e761
fix issue: do not re-generate domain key when call renew command
9 years ago
neil
137f5f8b78
minor,add info message.
9 years ago
raunsbaekdk
d4d645908f
Updated DNS description
Making it clearer that you are supposed to create the TXT record under the _acme-challenge subdomain
9 years ago
neil
b3a2aac829
minor
#check if there is sudo installed, AND if the current user is a sudoer.
9 years ago
neil
0a94c61973
remove dependency to "sha256sum" and "base64"
9 years ago
neil
0fda2a1dfb
minor, polish install message
9 years ago
neil
a179e5fc97
h2b: my own hex to bin. remove dependency to xxd tool
9 years ago
neil
de8090f57e
minor fix error message.
9 years ago
neil
5de1611628
minor fix output message.
9 years ago
neil
8ad71801eb
minor, uninstall le.sh in the workingdir.
9 years ago
neil
a6f744edb1
use nmap Ncat for centOS
9 years ago
neil
18629d0fdd
minor, use WORKING_DIR/le.sh to run cronjob. removes the dependency to "which" command.
9 years ago
neil
17c100d6ff
minor, remove unnecessary error message.
9 years ago
neil
34d91b9f97
support fullchain. If the real cert path equals to the ca cert path, we will append the ca cert to the domain cert, which makes it a fullchain.
9 years ago
neil
c24e86a697
hide un-recommended parms from 'issue' command. It's recommended to set "cert-file-path" etc via 'installcert' command.
9 years ago
neil
ab5ec2a2d2
fix bug: Le_RealCertPath was missing from installcert command
9 years ago
Samuel Tardieu
2276a9ec97
remove extra space leading to an error
The line was parsed as: execute command "" with removelevel being
cleared.
9 years ago
neil
649fc386d1
minor: fix install message.
9 years ago
neil
9a66cdb6a0
make le more friendly to no-root user.
1. separate installcronjob/uninstallcronjob. no-root users can use cron job without installing le.sh
2. add cron command for cron only.
3. polish help messages.
4. move le from /bin/le to /usr/local/bin/le
5. only root can install to /usr/local/bin/le. non-root users can use ether /usr/local/bin/le or ~/.le/le.sh instead
6. WORKING_DIR can be specified when install/cronjob
9 years ago
neil
ebcf30d02f
remove ".well-known" folder after verification
9 years ago
neil
f074cb1036
fix bug for webroot mode. The token was missing.
9 years ago
neil
79c2453a2c
separate "installcert" from "issue" command.
9 years ago
neil
e9840e6146
Support DNS-01 manually. Automatic api support is on its way.
9 years ago
Lucas Rolff
edcbe247cf
Also changing group of .well-known directory
9 years ago
tombii
5248c51770
Update le.sh
If we regenerate the key by using FORCE=1 then we also need to regenerate the CSR, otherwise the key will not match the certificate.
9 years ago
Lucas Rolff
4b70d69029
Chown directories to parent
- You might configure web-servers to not allow reading files owned by root (or user you execute as), modified script to try chowning the .well-known recursively
- If you do not have chown rights it will work anyway
9 years ago
neil
2bd7774b8f
remove unnecessary kill
9 years ago