jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
2,972 Commits 33 Branches 583 Tags
1caf4e9e76650c124a709c92b27aa470aec15213
Commit Graph

71 Commits

Author SHA1 Message Date
Girish Ramakrishnan 1caf4e9e76 remove the isConfigured check entirely 
good thing is that we will not check if the my. cert is valid each
time on start up which will work out well when restoring from
old backups with an outdated cert.
 2016-07-06 10:11:54 -05:00
Johannes Zellner 53d03698ad Setup admin certs if we are configured 2016-07-04 10:18:39 +02:00
Girish Ramakrishnan f9ed725002 wait (practically) forever for admin DNS propagation 2016-06-22 16:00:03 -05:00
Girish Ramakrishnan 8cfbf92adc fix acme prod setting detection 2016-06-22 15:55:53 -05:00
Girish Ramakrishnan f84de690ce pass retry options to waitForDns 2016-06-21 15:12:36 -05:00
Girish Ramakrishnan a4e73be834 pass auditSource for certificate renewal 2016-06-02 18:54:45 -07:00
Girish Ramakrishnan 2768c3a336 acme: configure prod based on caas or acme 2016-05-23 09:48:17 -07:00
Johannes Zellner 0d6637de27 Avoid circular dependencies with apps and certificates 2016-05-06 18:44:37 +02:00
Girish Ramakrishnan c4ae9526af look for fallback cert in nginx cert dir 2016-05-05 13:52:08 -07:00
Girish Ramakrishnan 8d79ac9ae0 provide tls cert and key to mail server 
haraka requires tls certs for:
1. supporting AUTH
2. port 587 support (MSA)

currently, we just reuse the cert for the admin domain. Otherwise,
we have to setup dns etc to get a new cert. While doable, its' not
necessary right now.
 2016-05-05 13:18:17 -07:00
Girish Ramakrishnan fc8bf82993 Add getters for fallback and admin cert 2016-05-04 17:37:21 -07:00
Girish Ramakrishnan ffedbdfa13 various minor fixes to eventlog 2016-05-02 10:01:23 -07:00
Girish Ramakrishnan a969e323a6 what if cron was a username 2016-05-01 11:48:29 -07:00
Girish Ramakrishnan c4ad6c803f add certificate renew event 2016-04-30 22:27:33 -07:00
Girish Ramakrishnan 9c9f82e2c5 fix usage of waitForDns 2016-04-26 11:09:14 -07:00
Girish Ramakrishnan 9893dd6640 make waitfordns get the zone itself 2016-04-25 10:52:12 -07:00
Girish Ramakrishnan aab035f7b9 use the acme backend when using altDomain 2016-04-25 10:52:12 -07:00
Girish Ramakrishnan 0e825272ae ensureCertificate now takes app object 2016-04-25 10:52:12 -07:00
Girish Ramakrishnan 46fee9e431 use config.adminFqdn instead 2016-04-25 10:52:12 -07:00
Girish Ramakrishnan a215443c56 do not renew apps without any cert 
autoRenew was mistakenly reconfiguring app without a cert (this
is the common case for apps in non-custom domain)
 2016-03-23 08:49:08 -07:00
girish@cloudron.io b1f172ed17 trim the output string 2016-03-21 08:25:10 -07:00
Girish Ramakrishnan 11513f9428 send a message for cert renewal status 2016-03-19 20:40:03 -07:00
Girish Ramakrishnan 5042741435 renew cert every 12 hours 2016-03-19 20:30:01 -07:00
Girish Ramakrishnan 8c36f3aab4 add debug for fallback case 2016-03-19 18:37:05 -07:00
Girish Ramakrishnan ea87841e77 merge fallback cert job into renewal 
this is becase we need to reconfigure for the case where we got a
renewed cert (but the app was switched to fallback cert at some point)
 2016-03-19 13:54:52 -07:00
Girish Ramakrishnan 20629ea078 fix linter errors 2016-03-19 13:22:38 -07:00
Girish Ramakrishnan b1b6a9ae65 reconfigure admin using configureAdmin 2016-03-19 12:54:11 -07:00
Girish Ramakrishnan 7ddbf7b652 refactor expiry check 2016-03-19 12:50:31 -07:00
Girish Ramakrishnan 3d088aa9c4 fix debug message 2016-03-19 12:31:48 -07:00
Girish Ramakrishnan f329e0da92 fix typo 2016-03-19 12:14:23 -07:00
Girish Ramakrishnan a58a458950 do not abbrev 2016-03-19 12:11:28 -07:00
Girish Ramakrishnan 44c5f84c56 Fix usage of isExpiringSync 2016-03-19 12:06:13 -07:00
Girish Ramakrishnan d6b92ee301 remove Job suffix 2016-03-19 10:25:19 -07:00
Girish Ramakrishnan 5d54c9e668 check my domain for expiry and falling back 2016-03-18 23:43:56 -07:00
Girish Ramakrishnan adaaca5ceb switch expired certs of domains to use fallback cert 
1) nginx won't reload when using expired certs
2) this is the only way the user can use the app now
 2016-03-18 23:26:57 -07:00
Girish Ramakrishnan 4a73e1490e Refactor code to take hours 2016-03-18 23:00:02 -07:00
Girish Ramakrishnan f31a7a5061 use fallback certs if renewal fails 2016-03-17 12:20:02 -07:00
girish@cloudron.io 20ac040dde cert: check expiry correctly 2016-03-14 22:50:06 -07:00
girish@cloudron.io 2b562f76ea le: handle renewal upto 30 days in advance 2016-03-14 22:18:43 -07:00
Girish Ramakrishnan fa4a8c2036 add debug for successful renewal 2016-03-14 15:55:51 -07:00
girish@cloudron.io a10ed73af2 get zoneName using tldjs 2016-03-08 09:52:13 -08:00
girish@cloudron.io 7a2e73a5d6 acme: update account with owner email 
fixes #544
 2016-01-13 14:21:59 -08:00
girish@cloudron.io 5eb3c208f1 allow email to be configured 2016-01-13 12:15:27 -08:00
Johannes Zellner 5f778e61dd Use new getIP() api in certificates.js 2016-01-05 12:23:07 +01:00
Girish Ramakrishnan b7a85580fa why is the linter not finding this again? 2015-12-21 16:14:30 -08:00
Girish Ramakrishnan 24cbd1a345 if i wrote a linter, these are the bugs it would catch 2015-12-19 13:48:14 -08:00
Girish Ramakrishnan 8b3e6742d5 better debugs 2015-12-19 13:47:48 -08:00
Girish Ramakrishnan 5edc3cde2a set prod option based on provider 2015-12-17 13:17:46 -08:00
Girish Ramakrishnan c55e1ff6b7 debug output the error 2015-12-15 00:23:57 -08:00
Girish Ramakrishnan f46af93528 do not installAdminCertificate for upgrades 2015-12-14 23:37:52 -08:00