maketank/Froxlor
2
0
Fork 0
Code Pull Requests Releases Activity
5,544 Commits 6 Branches 188 Tags
f68c4bc34b90852c22ffaa8b08118772706929ee
Commit Graph

67 Commits

Author SHA1 Message Date
Michael Kaufmann
9d113afc83 send email notification to admin for non-successful let's encrypt results; fixes #1162 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2023-07-26 10:13:50 +02:00
Michael Kaufmann
947df2079f rework path to certificates non-ecc/ecc, regardless of current setting 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2023-07-21 08:58:51 +02:00
Michael Kaufmann
7e635f9be4 correctly retriggered certificate issue on froxlor-vhost alias-domain changes, fixes #1115 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2023-03-24 09:17:04 +01:00
Michael Kaufmann
de7729cec8 add certificate metadata to db table 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2023-03-23 12:40:01 +01:00
Maurice Preuß (envoyr)
4c6ebde58c adding new dns resolver setting for let's encrypt 
Signed-off-by: Maurice Preuß (envoyr) <envoyr@froxlor.org>
Co-authored-by: Michael Kaufmann <d00p@froxlor.org>
 2023-01-18 13:57:47 +01:00
Michael Kaufmann
c56bc651b9 allow hiding documentation menu for customers via customers-hide-option; use --staging for acme.sh for every test-CA 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2023-01-18 08:59:59 +01:00
Michael Kaufmann
c769c074e0 add Google CA to available acme.sh providers; fixes #1065 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2023-01-09 10:00:08 +01:00
Michael Kaufmann
60beaf8440 fix form-control-plaintext color; make non-href action buttons in table-listings <span> instead of <a>; deactivate let's encrypt for froxlor vhost correctly if dns check returns false 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2022-10-18 12:20:28 +02:00
Michael Kaufmann
50e35e149c various minor bugfixes; composer requirements update 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2022-08-10 00:17:11 +02:00
Michael Kaufmann
ed73dbb5f3 set default-ca for acme.sh after updating acme.sh 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2022-05-09 08:40:09 +02:00
envoyr
4f4c71d79b major refactoring of almost all files 2022-04-28 20:48:00 +02:00
Michael Kaufmann
d1d42f2055 allow setting path to acme.sh installation; fixes #1002 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2021-12-31 10:38:49 +01:00
Michael Kaufmann
a552ea878e avoid undefined index of 'wwwserveralias' field if issueing/renewing lets encrypt certificate for froxlor-hostname 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2021-10-17 11:48:40 +02:00
Michael Kaufmann
0a1a3e023f check dns for lets encrypt when adding/editing domains and via cron; fixes #971 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2021-08-04 13:44:13 +02:00
Stefan Weil
09038ac7aa Fix some typos (found by codespell) (#969) 
Signed-off-by: Stefan Weil <sw@weilnetz.de>
 2021-07-31 09:51:54 +02:00
Michael Kaufmann
86939a64da add buypass testing/staging ACME endpoint; create CAA entries accordingly if activated; refs #968 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2021-07-29 21:24:43 +02:00
Jens Meißner
926ce427fc Add Buypass to the list of ACME providers. (#968) 2021-07-29 21:15:49 +02:00
Michael Kaufmann
5608f0407f correct heredoc indentation in AcmeSh for php-7.1; fixes #957 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2021-07-20 08:11:32 +02:00
Michael Kaufmann
73991e855c Support ZeroSSL via acme.sh (v3); refs #946 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2021-06-27 09:00:44 +02:00
RipClaw2971
3b3527348f Update AcmeSh.php 
Renewed certificates are not recognized if the domain is in upper/lower case.
 2021-02-24 13:00:31 +01:00
Michael Kaufmann
ee5de56a94 also validate existence of ssl-key file in vhost generation 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-12-10 09:47:58 +01:00
Michael Kaufmann
4ad8b62576 for ssl-fallback-check not only check for empty value but also for existence of certificate, thx to df8oe 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-09-06 14:12:25 +02:00
Michael Kaufmann
aa45a0302e fix permanent rebuilding of vhost configs, refs 0af655f106 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-07-29 08:23:49 +02:00
Michael Kaufmann
10b52486b5 ups, forgot to save the file so it's missing a critical return :P 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-07-25 17:28:46 +02:00
Michael Kaufmann
0af655f106 fix permanent rebuilding of vhost configs due to always-true renew check of let's encrypt certificates 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-07-25 17:21:52 +02:00
Michael Kaufmann
03bc94e69c insert task to sync certificates for all cases (issue and renew) 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-07-07 12:10:40 +02:00
Michael Kaufmann
a141c83ad4 do not call strtotime on the validTo_time_t key of cert_data as it already is an UNIX-timestamp, refs #865 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-06-23 20:35:50 +02:00
Michael Kaufmann
d653f6842f check for acme.sh upgrade on every run; fix not running --install-cronjob without having an issue command 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-06-21 19:50:46 +02:00
Michael Kaufmann
490704f8e1 Heredoc/nowdoc with an indented closing marker is not supported in PHP 7.2 or earlier. 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-06-06 20:57:24 +02:00
Michael Kaufmann
2748f1b633 also display error when domain does not resolv to any A or AAAA record in lets-encrypt-dns-validation 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-06-06 15:37:06 +02:00
Michael Kaufmann
2c98fc4c2d fix wrong certificate folder for fallback ceck (ecc/non-ecc) 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-06-04 07:42:13 +02:00
Michael Kaufmann
394ec4cd4a fix ecc certificate paths 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-05-31 09:13:22 +02:00
Michael Kaufmann
d73d8da2fd read certificate data folder from acme.sh.env file, fixes #846 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-05-28 20:08:49 +02:00
Michael Kaufmann
bddf9b496c enable internal api-call to bypass customer_hide_options check in certain situations where it is needed, fixes #803 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-05-15 09:35:20 +02:00
Andreas Grundler
c0dd432916 Certificate file cannot be read to database if the domain contains capital letters. 2020-05-04 12:08:20 +02:00
Michael Kaufmann
78fc4f84b2 add optional dns validation for let's encrypt activated domains; fixes #817 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-04-14 10:28:33 +02:00
Michael Kaufmann
9018404faa Double check whether installation of acme.sh worked when not installed yet and do not continue if not; fixes #823 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-04-14 08:10:36 +02:00
Michael Kaufmann
8bdd843bd9 fix renew of froxlors own letsencrypt certificate; fix only variables should be passed by reference in BackupCron; fix possible notice or double inclusion of language file in ReportsCron 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-04-08 09:07:48 +02:00
Michael Kaufmann
0d35f5cb29 restructure acmesh implementation and let acme.sh take care of renewing the certificates itself; fixes #792, fixes #816 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2020-04-04 18:04:39 +02:00
Christian Schneider
048e6c13ae Fix renewal of ECC/ECDSA certificates. 
The ACME v2 implementation uses separate directoies for ECC and on-ECC
certificates. The renew command for a domain checks if an ECC directory
exists (having a "_ecc" suffix) and refuses the command unless the
"--ecc" flag was specified.

Confusingly, this flag is only required to *renew* an ECC certificate,
but not to issue it.

This fixes https://github.com/Froxlor/Froxlor/issues/820.
 2020-03-29 22:36:26 +02:00
Michael Kaufmann
e8be3ee643 use correct apiendpoint for lets encrypt; pass debug-flag onto acme.sh; fixes #762 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2019-11-27 07:42:23 +01:00
Michael Kaufmann
1955b5dd32 add task to remove certificate from acme.sh when removed in froxlor; fix issue when mode of certificate generation was not reset to 'issue' and kept trying to 'renew' instead 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2019-11-10 18:34:02 +01:00
Michael Kaufmann
9c3549c604 lowercase domain-names in AcmeSh implementation to avoid https://github.com/Neilpang/acme.sh/issues/2556 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2019-11-04 11:39:06 +01:00
Michael Kaufmann
b162324ff0 fix renew-check of let's encrypt implementation, set version to 0.10.5 for bugfix release; fixes #747 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2019-11-01 14:19:06 +01:00
Michael Kaufmann
aa85c648a3 check for renewal of certificates not only if there's a task to regenerate vhosts but everytime the letsencrypt cronjob runs (which is basically obsolete due to the integration into the tasks cron but perfect for checking renewal dates 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2019-10-31 21:37:54 +01:00
Michael Kaufmann
9410356bc7 fix output of acme command when upgrading 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2019-10-14 10:12:26 +02:00
Michael Kaufmann
5d5cc3dda3 fix array to string conversion 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2019-10-13 22:49:03 +02:00
Michael Kaufmann
f588927bc5 check for existence of certificate files created by acme.sh 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2019-10-12 08:17:04 +02:00
Michael Kaufmann
fb54b887f2 remove unneeded apihelp-page code in admin/customer_index; set explicit version to api-doc URL; check for acme.sh cronjob and uninstall it, as froxlor manages that itself 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2019-10-10 16:42:32 +02:00
Michael Kaufmann
aca22a9c94 only add lets encrypt certificate if cert is valid; display acme.sh output if --debug is specified 
Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
 2019-09-15 15:40:13 +02:00