Jérémy Lecour
b6817cb62c
evoacme: upstream release 20.12
continuous-integration/drone/push Build is passing
2020-12-01 22:27:05 +01:00
Jérémy Lecour
b43d0f3629
evoacme: upstream release 20.11
2020-11-19 21:21:07 +01:00
Ludovic Poujol
c8d4da532f
evoacme: Don't ignore hooks with . in the name (ignore when it's ".disable")
continuous-integration/drone/push Build is passing
2020-10-20 10:58:51 +02:00
Jérémy Lecour
a60deb276b
evoacme: upstream release 20.08
2020-08-21 14:01:06 +02:00
Jérémy Lecour
7f0931510f
evoacme: upstream release 20.06.1
continuous-integration/drone/push Build is passing
2020-06-05 11:01:42 +02:00
Jérémy Lecour
1d5a30b144
evoacme: upstream release 20.06
continuous-integration/drone/push Build is passing
2020-06-03 12:09:58 +02:00
Jérémy Lecour
ab8c6b13b8
evoacme: upstream version 19.11
continuous-integration/drone/push Build is passing
2019-11-05 14:08:02 +01:00
Victor LABORIE
6469733d2f
evoacme: fix error handling in sed_cert_path_for_(apache|nginx)
2018-11-22 15:06:23 +01:00
Benoît S.
88b66dca24
Evoacme: Better usage of apache2ctl -t
...
By default apache2ctl is using stderr, even for displaying "Syntax OK".
So, we redirect it in stdout and remove "Syntax OK". Then we check the exit code.
2018-10-03 15:16:28 +02:00
Benoît S.
a4a3569630
Show the certificate path when exiting with an error
2018-03-06 10:34:55 +01:00
Benoît S.
cdaad871b3
Be sure to check the exit code of certbot
...
If we use set -e but no -o pipefail with a pipe, the last command exit code is
used by set -e.
certbot | grep -v something
If the grep exit with a non-zero exit code, set -e stop the execution of the
script. We don't care about that grep, so we now use the PIPESTATUS.
2018-03-05 14:46:49 +01:00
Gregory Colpart
fb6cb79b41
Keep read right on group for software with non-root access like OpenLDAP
2018-01-28 17:13:23 +01:00
Jérémy Lecour
7fee69ca22
evoacme: remove $()
2017-11-21 16:17:21 +01:00
Bruno TATU
ad9a15827f
evoacme: invert conditions in sed_cert_path_XXX()
2017-11-21 14:45:50 +01:00
Bruno TATU
9519e226e9
evoacme: remove double caret in sed pattern
2017-11-21 14:44:36 +01:00
Jérémy Lecour
330d500de6
evoacme: fix hooks execution
...
Disable regex for grep with "-F"
2017-10-24 17:38:59 +02:00
Jérémy Lecour
56e5cfc06d
evoacme: directories must be owned by "acme"
2017-10-24 17:38:05 +02:00
Jérémy Lecour
131eac4499
Fix: return if file is not readable
2017-10-24 17:37:46 +02:00
Jérémy Lecour
8567160596
evoacme: don't execute hooks with dots in file name
2017-10-20 10:15:12 +02:00
Jérémy Lecour
1b50dfb0b3
evoacme: inline hooks calls + export variables
2017-10-19 23:23:51 +02:00
Jérémy Lecour
3d3e45faef
evoacme: use local variable
2017-10-19 23:18:11 +02:00
Jérémy Lecour
4d6853f844
evoacme: use hooks after certificate creation
2017-10-19 22:21:18 +02:00
Jérémy Lecour
d2f86f7950
evoacme: check for arguments first
2017-10-19 11:08:16 +02:00
Jérémy Lecour
37cd22a466
evoacme: remove useless variables
2017-10-19 11:08:01 +02:00
Jérémy Lecour
266ac7fc07
evoacme: create important directories
2017-10-19 11:07:45 +02:00
Jérémy Lecour
e47371f347
Use bash, for proper readonly/local support
...
"readonly" is a safety bonus, but "local" is really important
not to overwrite variables from functions.
2017-10-19 11:05:54 +02:00
Jérémy Lecour
4d3ed7ed97
evoacme: remove a debug statement
2017-10-19 07:59:55 +02:00
Jérémy Lecour
cd8ea40336
readability and whitespaces
2017-10-18 00:43:33 +02:00
Jérémy Lecour
232648a9b0
readlink -> realpath
...
better portability on BSD systems
2017-10-18 00:42:15 +02:00
Jérémy Lecour
beff333a1a
Evoacme: big refactoring
...
* debug messages are sent to stdout
* domains discovery from vhosts is extracted to "vhost-domains"
* fixes suggested by shellcheck
* variables are "local" or "readonly" wherever possible
2017-10-17 14:46:37 +02:00
Jérémy Lecour
1941f9a3f9
evoacme: improve webserver config logic
2017-10-13 17:14:03 +02:00
Jérémy Lecour
2066a79f2e
evoacme: exit after certbot in dry-run mode
2017-10-13 17:13:14 +02:00
Jérémy Lecour
350abe5787
evoacme: invert test logic
2017-10-13 14:05:05 +02:00
Jérémy Lecour
baa5eae784
evoacme: add many tests
2017-10-13 12:46:40 +02:00
Jérémy Lecour
1c5e5e965b
evoacme: fix typo
2017-10-13 12:32:16 +02:00
Jérémy Lecour
06a3965fde
whitespaces
2017-10-13 12:30:34 +02:00
Jérémy Lecour
31a19114e5
evoacme: readability of tests
...
change from :
"what I don't want" && error
to :
"what I want" || error
2017-10-13 12:30:24 +02:00
Jérémy Lecour
9bccbd9496
evoacme: check for readability, not just presence
2017-10-13 12:28:44 +02:00
Jérémy Lecour
0022071462
evoacme: add tests to fail with proper messages
2017-10-13 12:08:47 +02:00
Jérémy Lecour
e11958d101
evoacme: fix web servers config check
2017-10-13 11:18:37 +02:00
Jérémy Lecour
6d6d0760cd
evoacme: sed cert path after cert creation
2017-10-13 11:18:15 +02:00
Jérémy Lecour
88600039d3
evoacme: daily iterations are not enough
2017-10-13 11:17:32 +02:00
Jérémy Lecour
5e71da94d3
evoacme: fix typo
2017-10-13 11:16:46 +02:00
Jérémy Lecour
9fccd7e682
evoacme: improve variables
2017-10-12 18:22:43 +02:00
Jérémy Lecour
65ccc2c0b5
evoacme: use env variables for execution modes
2017-10-12 18:22:06 +02:00
Jérémy Lecour
30434a70d8
evoacme: csr verification is a different function call
2017-10-12 18:20:49 +02:00
Jérémy Lecour
118a9759af
evoacme: change function name to be more specific
2017-10-12 18:19:53 +02:00
Jérémy Lecour
3c61484448
evoacme: don't allow uninitialized variables
2017-10-12 18:19:09 +02:00
Jérémy Lecour
0d0c21f908
Evoacme: refactoring
...
* add a lot of variables, to reduce possible typos
* add a lot of debug statements
* add many comments and line breaks for readability
* extract functions for complex openssl commands
* explode the big certbot command into multiple lines
* allow certbot to make test certs (for API query limits)
* allow certbot to run in "dry run" mode
* regroup some lines together when they do related things
2017-10-12 00:29:21 +02:00
Victor LABORIE
1c244f556b
evoacme: better apache/nginx reload
2017-10-11 18:50:20 +02:00
Jérémy Lecour
Ludovic Poujol
Victor LABORIE
Benoît S.
Bruno TATU