Girish Ramakrishnan
|
0651bfc4b8
|
provide cert and key file in callback
|
2015-12-14 09:29:48 -08:00 |
|
Girish Ramakrishnan
|
21b94b2655
|
fix debug message
|
2015-12-14 08:52:43 -08:00 |
|
Girish Ramakrishnan
|
4e40c2341a
|
code now uses backend
|
2015-12-14 08:50:57 -08:00 |
|
Girish Ramakrishnan
|
d9a83eacd2
|
explicitly prune out second argument
|
2015-12-13 20:35:23 -08:00 |
|
Girish Ramakrishnan
|
7b40674c0d
|
add a backend for caas
|
2015-12-13 19:09:57 -08:00 |
|
Girish Ramakrishnan
|
936c1989f1
|
refactor code a bit for renewal
|
2015-12-13 12:26:31 -08:00 |
|
Girish Ramakrishnan
|
cfe336c37c
|
fix path to acme key
|
2015-12-13 11:54:17 -08:00 |
|
Girish Ramakrishnan
|
d8a1e4aab0
|
more debug messages
|
2015-12-12 20:39:24 -08:00 |
|
Girish Ramakrishnan
|
be4d2afff3
|
fix path to cert
|
2015-12-12 20:30:50 -08:00 |
|
Girish Ramakrishnan
|
c2a4ef5f93
|
maybe this gets the certificate
|
2015-12-12 20:30:50 -08:00 |
|
Girish Ramakrishnan
|
22634b4ceb
|
tlsConfig is part of the database
|
2015-12-12 15:43:42 -08:00 |
|
Girish Ramakrishnan
|
fe94190c2f
|
do not save certs in database
|
2015-12-12 13:29:10 -08:00 |
|
Girish Ramakrishnan
|
9d91340223
|
add settings.setTlsConfig
|
2015-12-11 22:39:13 -08:00 |
|
Girish Ramakrishnan
|
e0a56f75c3
|
typo
|
2015-12-11 22:27:00 -08:00 |
|
Girish Ramakrishnan
|
4cfd30f9e8
|
use tlsConfig to determine acme or not
|
2015-12-11 22:25:57 -08:00 |
|
Girish Ramakrishnan
|
3fbcbf0e5d
|
store tls config in database
|
2015-12-11 22:14:56 -08:00 |
|
Girish Ramakrishnan
|
8b7833e8b1
|
fix debug namespacing
|
2015-12-11 21:49:24 -08:00 |
|
Girish Ramakrishnan
|
66441f133d
|
fix typo
|
2015-12-11 20:09:16 -08:00 |
|
Girish Ramakrishnan
|
8a12d6019a
|
assert assert everywhere, hope none fires!
|
2015-12-11 14:50:30 -08:00 |
|
Girish Ramakrishnan
|
39c626dc75
|
more moving of nginx code
|
2015-12-11 14:48:39 -08:00 |
|
Girish Ramakrishnan
|
a7480c3f29
|
implement installation of admin certificate via acme
|
2015-12-11 14:37:55 -08:00 |
|
Girish Ramakrishnan
|
95eba1db81
|
Add certificates.ensureCertificate which gets cert via acme
|
2015-12-11 14:15:44 -08:00 |
|
Girish Ramakrishnan
|
0b8fde7d8d
|
rename app.setAppCertificate
|
2015-12-11 14:13:29 -08:00 |
|
Girish Ramakrishnan
|
2f7517152a
|
rename certificates.initialize
|
2015-12-11 14:02:58 -08:00 |
|
Girish Ramakrishnan
|
3e2ea0e087
|
refactor certificate settings
|
2015-12-11 13:58:43 -08:00 |
|
Girish Ramakrishnan
|
723556d6a2
|
Add CertificatesError
|
2015-12-11 13:43:33 -08:00 |
|
Girish Ramakrishnan
|
1f53d76cef
|
wait forever by default
|
2015-12-11 13:41:17 -08:00 |
|
Girish Ramakrishnan
|
d15488431b
|
add waitfordns.js (refactored from appstore)
|
2015-12-11 13:14:27 -08:00 |
|
Girish Ramakrishnan
|
cf80fd7dc5
|
rename certificatemanager
|
2015-12-11 12:24:52 -08:00 |
|
Girish Ramakrishnan
|
73d891b98e
|
move validateCertificate to certificateManager
|
2015-12-10 20:38:49 -08:00 |
|
Girish Ramakrishnan
|
fd985c2011
|
configure nginx as the last step
this allow us to wait for certificate (in the case of LE)
|
2015-12-10 15:26:36 -08:00 |
|
Girish Ramakrishnan
|
47981004c9
|
split port reserving to separate function
this allows us to move nginx configuration to the bottom of apptask
(required for tls cert download support)
|
2015-12-10 15:25:15 -08:00 |
|
Girish Ramakrishnan
|
e3f7c8f63d
|
use fqdn to save admin certs as well
|
2015-12-10 14:29:54 -08:00 |
|
Girish Ramakrishnan
|
3c4adb1aed
|
fix config path
|
2015-12-10 13:36:44 -08:00 |
|
Girish Ramakrishnan
|
66db918273
|
add certificate manager stub
|
2015-12-10 13:35:02 -08:00 |
|
Girish Ramakrishnan
|
69845d5ddd
|
add config.adminFqdn()
|
2015-12-10 13:14:13 -08:00 |
|
Girish Ramakrishnan
|
5fc4788269
|
remove test code
|
2015-12-10 11:09:37 -08:00 |
|
Girish Ramakrishnan
|
d0f8293b73
|
treat acme as a cert backend
|
2015-12-10 11:08:22 -08:00 |
|
Girish Ramakrishnan
|
44582bcd4b
|
download the certificate as binary
|
2015-12-10 11:07:10 -08:00 |
|
Girish Ramakrishnan
|
5c73aed953
|
remove unused require
|
2015-12-10 09:54:21 -08:00 |
|
Girish Ramakrishnan
|
e1ec48530e
|
acme: create cert file with the chain
|
2015-12-10 09:11:08 -08:00 |
|
Girish Ramakrishnan
|
54c4053728
|
add LE cross signed
https://letsencrypt.org/certs/lets-encrypt-x1-cross-signed.pem.txt
|
2015-12-10 09:06:36 -08:00 |
|
Girish Ramakrishnan
|
79ffb0df5c
|
acme: openssl does not play well with buffers. use files instead
|
2015-12-10 08:57:53 -08:00 |
|
Girish Ramakrishnan
|
c510952c88
|
s/privateKeyPem/accountKeyPem
|
2015-12-09 19:23:19 -08:00 |
|
Girish Ramakrishnan
|
6109da531d
|
acme: use safe
|
2015-12-09 19:22:53 -08:00 |
|
Girish Ramakrishnan
|
56877332db
|
pull in urlBase64Encode
|
2015-12-09 18:34:27 -08:00 |
|
Girish Ramakrishnan
|
aaf266d272
|
convert cert to pem
|
2015-12-08 20:05:14 -08:00 |
|
Girish Ramakrishnan
|
0750db9aae
|
rename function
|
2015-12-08 19:54:37 -08:00 |
|
Girish Ramakrishnan
|
316976d295
|
generate the acme account key on first run
|
2015-12-08 19:42:33 -08:00 |
|
Girish Ramakrishnan
|
593b5d945b
|
use this fake email as the account owner for now
|
2015-12-08 19:15:17 -08:00 |
|