Girish Ramakrishnan
fe723f5a53
remove trailing slash in url
2015-12-15 00:42:18 -08:00
Girish Ramakrishnan
c55e1ff6b7
debug output the error
2015-12-15 00:23:57 -08:00
Girish Ramakrishnan
f46af93528
do not installAdminCertificate for upgrades
2015-12-14 23:37:52 -08:00
Girish Ramakrishnan
8ead0e662a
detect apptask crashes
2015-12-14 19:11:26 -08:00
Girish Ramakrishnan
409096cbff
Use production LE
2015-12-14 17:31:41 -08:00
Girish Ramakrishnan
e5a40faf82
simply use fallback certs if LE fails
...
currently, it fails if we cannot get a cert.
This means that we need to provide some option to simply use fallback
cert. This requires UI changes that I want to avoid :-)
2015-12-14 17:13:54 -08:00
Girish Ramakrishnan
89bff16053
fix crash
2015-12-14 14:08:45 -08:00
Girish Ramakrishnan
a89476c538
fix renewal check
2015-12-14 13:52:54 -08:00
Girish Ramakrishnan
f51b61e407
do not dump the csr
2015-12-14 13:41:30 -08:00
Girish Ramakrishnan
f31d63aabd
implement cert auto-renewal
2015-12-14 12:40:39 -08:00
Girish Ramakrishnan
fd20246e8b
ensureCertificate: check if cert needs renewal
2015-12-14 12:38:19 -08:00
Girish Ramakrishnan
0c1ea39a02
add getApi
2015-12-14 12:28:00 -08:00
Girish Ramakrishnan
a409dd026d
use url file to download cert if present
2015-12-14 12:22:57 -08:00
Girish Ramakrishnan
4731f8e5a7
move key creation into the acme flow
2015-12-14 12:21:41 -08:00
Girish Ramakrishnan
7e05259b0e
save url for renewal in .url files
2015-12-14 12:17:57 -08:00
Girish Ramakrishnan
14ab85dc4f
do not pass outdir
2015-12-14 11:42:59 -08:00
Girish Ramakrishnan
0651bfc4b8
provide cert and key file in callback
2015-12-14 09:29:48 -08:00
Girish Ramakrishnan
21b94b2655
fix debug message
2015-12-14 08:52:43 -08:00
Girish Ramakrishnan
4e40c2341a
code now uses backend
2015-12-14 08:50:57 -08:00
Girish Ramakrishnan
d9a83eacd2
explicitly prune out second argument
2015-12-13 20:35:23 -08:00
Girish Ramakrishnan
7b40674c0d
add a backend for caas
2015-12-13 19:09:57 -08:00
Girish Ramakrishnan
936c1989f1
refactor code a bit for renewal
2015-12-13 12:26:31 -08:00
Girish Ramakrishnan
cfe336c37c
fix path to acme key
2015-12-13 11:54:17 -08:00
Girish Ramakrishnan
d8a1e4aab0
more debug messages
2015-12-12 20:39:24 -08:00
Girish Ramakrishnan
be4d2afff3
fix path to cert
2015-12-12 20:30:50 -08:00
Girish Ramakrishnan
c2a4ef5f93
maybe this gets the certificate
2015-12-12 20:30:50 -08:00
Girish Ramakrishnan
22634b4ceb
tlsConfig is part of the database
2015-12-12 15:43:42 -08:00
Girish Ramakrishnan
fe94190c2f
do not save certs in database
2015-12-12 13:29:10 -08:00
Girish Ramakrishnan
9d91340223
add settings.setTlsConfig
2015-12-11 22:39:13 -08:00
Girish Ramakrishnan
e0a56f75c3
typo
2015-12-11 22:27:00 -08:00
Girish Ramakrishnan
4cfd30f9e8
use tlsConfig to determine acme or not
2015-12-11 22:25:57 -08:00
Girish Ramakrishnan
3fbcbf0e5d
store tls config in database
2015-12-11 22:14:56 -08:00
Girish Ramakrishnan
8b7833e8b1
fix debug namespacing
2015-12-11 21:49:24 -08:00
Girish Ramakrishnan
66441f133d
fix typo
2015-12-11 20:09:16 -08:00
Girish Ramakrishnan
8a12d6019a
assert assert everywhere, hope none fires!
2015-12-11 14:50:30 -08:00
Girish Ramakrishnan
39c626dc75
more moving of nginx code
2015-12-11 14:48:39 -08:00
Girish Ramakrishnan
a7480c3f29
implement installation of admin certificate via acme
2015-12-11 14:37:55 -08:00
Girish Ramakrishnan
95eba1db81
Add certificates.ensureCertificate which gets cert via acme
2015-12-11 14:15:44 -08:00
Girish Ramakrishnan
0b8fde7d8d
rename app.setAppCertificate
2015-12-11 14:13:29 -08:00
Girish Ramakrishnan
2f7517152a
rename certificates.initialize
2015-12-11 14:02:58 -08:00
Girish Ramakrishnan
3e2ea0e087
refactor certificate settings
2015-12-11 13:58:43 -08:00
Girish Ramakrishnan
723556d6a2
Add CertificatesError
2015-12-11 13:43:33 -08:00
Girish Ramakrishnan
1f53d76cef
wait forever by default
2015-12-11 13:41:17 -08:00
Girish Ramakrishnan
d15488431b
add waitfordns.js (refactored from appstore)
2015-12-11 13:14:27 -08:00
Girish Ramakrishnan
cf80fd7dc5
rename certificatemanager
2015-12-11 12:24:52 -08:00
Girish Ramakrishnan
73d891b98e
move validateCertificate to certificateManager
2015-12-10 20:38:49 -08:00
Girish Ramakrishnan
fd985c2011
configure nginx as the last step
...
this allow us to wait for certificate (in the case of LE)
2015-12-10 15:26:36 -08:00
Girish Ramakrishnan
47981004c9
split port reserving to separate function
...
this allows us to move nginx configuration to the bottom of apptask
(required for tls cert download support)
2015-12-10 15:25:15 -08:00
Girish Ramakrishnan
e3f7c8f63d
use fqdn to save admin certs as well
2015-12-10 14:29:54 -08:00
Girish Ramakrishnan
3c4adb1aed
fix config path
2015-12-10 13:36:44 -08:00
