mirror of
https://github.com/opnsense/plugins.git
synced 2026-02-03 20:40:37 -05:00
Merge pull request #5173 from fraenki/acme_413
security/acme-client: release 4.13
This commit is contained in:
Frank Wall
GitHub
commit
cb73d5e65a
6 changed files with 23 additions and 9 deletions
|
|
@ -1,5 +1,5 @@
|
|||
PLUGIN_NAME= acme-client
|
||||
PLUGIN_VERSION= 4.12
|
||||
PLUGIN_VERSION= 4.13
|
||||
PLUGIN_COMMENT= ACME Client
|
||||
PLUGIN_MAINTAINER= opnsense@moov.de
|
||||
PLUGIN_DEPENDS= acme.sh py${PLUGIN_PYTHON}-dns-lexicon
|
||||
|
|
|
|||
|
|
@ -8,6 +8,20 @@ WWW: https://github.com/acmesh-official/acme.sh
|
|||
Plugin Changelog
|
||||
================
|
||||
|
||||
4.13
|
||||
|
||||
Added:
|
||||
* add support for ACME profiles (#5154)
|
||||
* add support for deploy hook "Ruckus" (#5157)
|
||||
* add support for Spaceship.com DNS API (#5158)
|
||||
* add global access key option for TransIP DNS API (#5166)
|
||||
|
||||
Changed:
|
||||
* allow setting renewal interval to 0 (#5168)
|
||||
|
||||
Fixed:
|
||||
* remove duplicate slashes in nsupdate, TransIP, OPNsense, TLS ALPN challenge types (#5166)
|
||||
|
||||
4.12
|
||||
|
||||
Added:
|
||||
|
|
|
|||
|
|
@ -40,7 +40,7 @@ class DnsNsupdate extends Base implements LeValidationInterface
|
|||
public function prepare()
|
||||
{
|
||||
$configdir = (string)sprintf(self::ACME_CONFIG_DIR, $this->cert_id);
|
||||
$secret_key_filename = "{$configdir}/secret.key";
|
||||
$secret_key_filename = "{$configdir}secret.key";
|
||||
$secret_key_data = (string)$this->config->dns_nsupdate_key . "\n";
|
||||
file_put_contents($secret_key_filename, $secret_key_data);
|
||||
|
||||
|
|
|
|||
|
|
@ -40,7 +40,7 @@ class DnsTransip extends Base implements LeValidationInterface
|
|||
public function prepare()
|
||||
{
|
||||
$configdir = (string)sprintf(self::ACME_CONFIG_DIR, $this->cert_id);
|
||||
$secret_key_filename = "{$configdir}/secret.key";
|
||||
$secret_key_filename = "{$configdir}secret.key";
|
||||
$secret_key_data = (string)$this->config->dns_transip_key . "\n";
|
||||
file_put_contents($secret_key_filename, $secret_key_data);
|
||||
|
||||
|
|
|
|||
|
|
@ -127,10 +127,10 @@ class HttpOpnsense extends Base implements LeValidationInterface
|
|||
}
|
||||
|
||||
// Create temporary port forward to allow acme challenges to get through
|
||||
File::file_put_contents("{$configdir}/acme_anchor_setup", "rdr-anchor \"acme-client\"\n", 0600);
|
||||
File::file_put_contents("{$configdir}acme_anchor_setup", "rdr-anchor \"acme-client\"\n", 0600);
|
||||
Shell::run_safe('/sbin/pfctl -f %s', ["{$configdir}/acme_anchor_setup"]);
|
||||
File::file_put_contents("{$configdir}/acme_anchor_rules", $anchor_rules, 0600);
|
||||
Shell::run_safe('/sbin/pfctl -a %s -f %s', ['acme-client', "{$configdir}/acme_anchor_rules"]);
|
||||
File::file_put_contents("{$configdir}acme_anchor_rules", $anchor_rules, 0600);
|
||||
Shell::run_safe('/sbin/pfctl -a %s -f %s', ['acme-client', "{$configdir}acme_anchor_rules"]);
|
||||
}
|
||||
|
||||
public function cleanup()
|
||||
|
|
|
|||
|
|
@ -128,10 +128,10 @@ class TlsalpnAcme extends Base implements LeValidationInterface
|
|||
}
|
||||
|
||||
// Create temporary port forward to allow acme challenges to get through
|
||||
File::file_put_contents("{$configdir}/acme_anchor_setup", "rdr-anchor \"acme-client\"\n", 0600);
|
||||
File::file_put_contents("{$configdir}acme_anchor_setup", "rdr-anchor \"acme-client\"\n", 0600);
|
||||
Shell::run_safe('/sbin/pfctl -f %s', ["{$configdir}/acme_anchor_setup"]);
|
||||
File::file_put_contents("{$configdir}/acme_anchor_rules", $anchor_rules, 0600);
|
||||
Shell::run_safe("/sbin/pfctl -a %s -f %s", ['acme-client', "{$configdir}/acme_anchor_rules"]);
|
||||
File::file_put_contents("{$configdir}acme_anchor_rules", $anchor_rules, 0600);
|
||||
Shell::run_safe("/sbin/pfctl -a %s -f %s", ['acme-client', "{$configdir}acme_anchor_rules"]);
|
||||
}
|
||||
|
||||
public function cleanup()
|
||||
|
|
|
|||
Loading…
Reference in a new issue