Jérémy Lecour
06a3965fde
whitespaces
2017-10-13 12:30:34 +02:00
Jérémy Lecour
31a19114e5
evoacme: readability of tests
...
change from :
"what I don't want" && error
to :
"what I want" || error
2017-10-13 12:30:24 +02:00
Jérémy Lecour
9bccbd9496
evoacme: check for readability, not just presence
2017-10-13 12:28:44 +02:00
Jérémy Lecour
3c283d2bb4
evoacme: execute evoacme in cron mode
2017-10-13 12:09:12 +02:00
Jérémy Lecour
0022071462
evoacme: add tests to fail with proper messages
2017-10-13 12:08:47 +02:00
Jérémy Lecour
e11958d101
evoacme: fix web servers config check
2017-10-13 11:18:37 +02:00
Jérémy Lecour
6d6d0760cd
evoacme: sed cert path after cert creation
2017-10-13 11:18:15 +02:00
Jérémy Lecour
88600039d3
evoacme: daily iterations are not enough
2017-10-13 11:17:32 +02:00
Jérémy Lecour
5e71da94d3
evoacme: fix typo
2017-10-13 11:16:46 +02:00
Jérémy Lecour
bced7561c9
make-csr: extract a few functions
2017-10-13 11:16:21 +02:00
Jérémy Lecour
fb0c22dfd1
evoacme: refactoring for make-csr
...
inspired from recent refactoring or evoacme itself
2017-10-13 00:47:02 +02:00
Jérémy Lecour
9fccd7e682
evoacme: improve variables
2017-10-12 18:22:43 +02:00
Jérémy Lecour
65ccc2c0b5
evoacme: use env variables for execution modes
2017-10-12 18:22:06 +02:00
Jérémy Lecour
30434a70d8
evoacme: csr verification is a different function call
2017-10-12 18:20:49 +02:00
Jérémy Lecour
118a9759af
evoacme: change function name to be more specific
2017-10-12 18:19:53 +02:00
Jérémy Lecour
3c61484448
evoacme: don't allow uninitialized variables
2017-10-12 18:19:09 +02:00
Jérémy Lecour
0d0c21f908
Evoacme: refactoring
...
* add a lot of variables, to reduce possible typos
* add a lot of debug statements
* add many comments and line breaks for readability
* extract functions for complex openssl commands
* explode the big certbot command into multiple lines
* allow certbot to make test certs (for API query limits)
* allow certbot to run in "dry run" mode
* regroup some lines together when they do related things
2017-10-12 00:29:21 +02:00
Victor LABORIE
1c244f556b
evoacme: better apache/nginx reload
2017-10-11 18:50:20 +02:00
Victor LABORIE
2dbdfb6600
evoacme: add error and debug function
2017-10-11 18:50:19 +02:00
Gregory Colpart
30c47fcd50
A lot of improvments: add comments, add tests/tests/tests, add --cron option, drop HAProxy support, modify Apache/Nginx conf only first time
2017-09-21 03:50:24 +02:00
Gregory Colpart
7ea5982611
empty commit, only :retab
2017-09-21 03:48:24 +02:00
Gregory Colpart
81698d03de
by default copy use files/ directory
2017-09-21 03:48:17 +02:00
Gregory Colpart
26d823174f
use {{ evoacme_crt_dir }} var everywhere
2017-09-21 03:48:11 +02:00
Gregory Colpart
a006a604f2
Rename /etc/cron.d/certbot to .disabled as written in https://wiki.evolix.org/HowtoLetsEncrypt
2017-09-21 03:48:05 +02:00
Gregory Colpart
cdf0861821
More clear without include for determining apache/nginx presence
2017-09-21 03:47:57 +02:00
Victor LABORIE
d96e2ea5bf
evoacme: renew certs 30 days before expiration by default
2017-09-18 15:02:20 +02:00
Victor LABORIE
8a139b07b2
evoacme: fix SRV_IP overriding in make-csr
2017-09-13 11:38:38 +02:00
Victor LABORIE
f5fdd71681
evoacme: fix invalid domain printing in make-csr
2017-09-12 15:49:35 +02:00
Victor LABORIE
069e675c6b
evoacme: add basic check to evoacme.sh
2017-09-11 17:05:46 +02:00
Victor LABORIE
ab177c2dad
evoacme: add pem extension to dhparam file
2017-09-11 17:05:46 +02:00
Victor LABORIE
6c399ca60e
evoacme: fix live link path
2017-09-11 17:05:46 +02:00
Victor LABORIE
1fbcb61559
evoacme: fix typo
2017-09-11 17:05:45 +02:00
Victor LABORIE
ff392d8e26
evoacme: fix symlink generation
2017-09-11 17:05:45 +02:00
Victor LABORIE
0726d29796
evoacme: purge same day cert before recreating it
2017-09-11 17:05:45 +02:00
Victor LABORIE
740b60d838
evoacme: make-csr stdout is more verbose
2017-09-11 17:05:45 +02:00
Victor LABORIE
e16eafc1a0
evoacme: complete refactoring of make-csr.sh
2017-09-11 17:05:45 +02:00
Victor LABORIE
05afeea894
evoacme: remove obsolete sudoers file
2017-09-11 17:05:44 +02:00
Victor LABORIE
8d7cbab3a9
evoacme: refactoring of certbot.cron
2017-09-11 17:05:44 +02:00
Victor LABORIE
9deb594834
evoacme: move scripts in /usr/local/sbin
2017-09-11 17:05:44 +02:00
Victor LABORIE
e210de5f53
evoacme: complete refactoring of evoacme.sh
2017-09-11 17:05:44 +02:00
Gregory Colpart
207a2f6011
Improve distribution verification
2017-08-23 01:49:27 +02:00
Gregory Colpart
41329af173
Remove dynamic add of whitelist Squid proxy
2017-08-23 01:26:57 +02:00
Gregory Colpart
2bb7367edf
standardization for Debian versions : we use "jessie" or "9 or later" to prepare buster smoothly as possible
2017-08-18 03:50:30 +02:00
Jérémy Lecour
62fbbd2016
Rename role "apt-repositories" to "apt"
2017-07-19 08:56:46 +02:00
Jérémy Lecour
3a8093fb12
Apache: use "Require"
...
http://httpd.apache.org/docs/2.4/howto/auth.html
2017-07-18 20:13:58 +02:00
Jérémy Lecour
bc99227259
Better squid/squid3 whitelist and reload
2017-07-12 12:17:33 +02:00
Victor LABORIE
08b4b2fa4a
evoacme: change location priority for nginx
2017-07-03 17:37:05 +02:00
Victor LABORIE
f14ee0424e
evoacme: fix certbot verbosity
2017-06-12 14:09:29 +02:00
Victor LABORIE
267f1ffc88
evoacme: refactoring
2017-06-12 13:14:30 +02:00
Daniel Jakots
2eb194577f
use the correct var
2017-06-06 16:36:09 -04:00