Difuse/packages
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
14871 commits 8 branches 0 tags 65 MiB
Commit graph

9 commits

Author SHA1 Message Date
Toke Høiland-Jørgensen
279c09d0b2 ACME: Remove dependency on luci-lib-ipkg 
Instead, use @jow-'s suggestion of just checking for the presence of the
executables to find the installed web servers.

Fixes #8529.

Signed-off-by: Toke Høiland-Jørgensen <toke@redhat.com>
 2019-05-23 16:47:34 +02:00
Toke Høiland-Jørgensen
71c7d30e00 acme: Remove 8192 bits certificate option 
This is not supported by letsencrypt, so issuing the certificate will fail.
Instead, add 3072 bits as an intermediate option.

Signed-off-by: Toke Høiland-Jørgensen <toke@redhat.com>
 2019-01-08 13:08:15 +01:00
Toke Høiland-Jørgensen
5a1f294667 acme: Support selecting ECC certificates from Luci 
As pointed out by @andersk, acme.sh already supports ECC certificates, and
they can be set manually in the uci file, just not in Luci. Fix this by
changing the key size selector into a listbox, and adding ECC certs as
options.

Fixes #7825.

Signed-off-by: Toke Høiland-Jørgensen <toke@redhat.com>
 2019-01-08 11:29:37 +01:00
Toke Høiland-Jørgensen
a96c90b6f5 acme: Fix whitespace and long lines, bump package rev 
Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
 2018-09-19 16:29:55 +02:00
Ansuel Smith
924e2f53e2 acme: add support for nginx webserver 
This adds a metapakcge for acme luci ap without uhttpd dependency and adds entities and check to stop handle nginx server and modify the certificate set automatically.

Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>
 2018-09-19 16:21:00 +02:00
Toke Høiland-Jørgensen
0768374b73 acme: Not all fields should be mandatory in Luci 
Fixes #6370.

Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
 2018-06-27 23:06:06 +02:00
Zhong Jianxin
b528ec5e79 acme: Support DNS mode 
Tested with dynu.com ddns.

Install acme-dnsapi:

    # opkg install acme-dnsapi

Example `/etc/config/acme`:

    config acme
        option state_dir '/etc/acme'
        option account_email email@example.org'
        option debug '0'

    config cert 'foo'
        option enabled '1'
        option use_staging '1'
        option keylength '2048'
        option update_uhttpd '0'
        option dns 'dns_dynu'
        list domains 'foo.dynu.com'
        list domains '*.foo.dynu.com'
        list credentials 'Dynu_ClientId="xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"'
        list credentials 'Dynu_Secret="yyyyyyyyyyyyyyyyyyyyyyyyy"'

Run:

    # /etc/init.d/acme start

Signed-off-by: Zhong Jianxin <azuwis@gmail.com>
 2018-04-19 11:05:35 +02:00
Toke Høiland-Jørgensen
34ed7a9f2c acme: Support running in webroot mode, detect other daemons on port 80 
For configurations where another web server is running on port 80, running
acme.sh in standalone mode fails. Try to detect this and refuse to run; and
allow the user to configure a webroot directory to use the running webserver for
certificate verification.

This also updates acme.sh to the latest version.

Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
 2017-04-26 16:32:24 +02:00
Toke Høiland-Jørgensen
f3e03d6661 acme: Add Luci app 
This adds a Luci configuration app for the ACME certificate package.

Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
 2016-08-05 21:37:37 +02:00