upstream/opnsense-plugins
1
0
Fork 0
mirror of https://github.com/opnsense/plugins.git synced 2026-02-03 20:40:37 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

security/acme-client: remove duplicate slashes, refs #5166

Browse source
This commit is contained in:
Frank Wall 2026-01-29 22:16:27 +01:00
parent d18e09c78d
commit db0b943465
5 changed files with 11 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
security/acme-client/pkg-descr
View file

@ -15,6 +15,9 @@ Added:
* add support for deploy hook "Ruckus" (#5157)
* add support for Spaceship.com DNS API (#5158)
Fixed:
* remove duplicate slashes in nsupdate, TransIP, OPNsense, TLS ALPN challenge types (#5166)
4.12
Added:

2
security/acme-client/src/opnsense/mvc/app/library/OPNsense/AcmeClient/LeValidation/DnsNsupdate.php
View file

@ -40,7 +40,7 @@ class DnsNsupdate extends Base implements LeValidationInterface
public function prepare()
{
$configdir = (string)sprintf(self::ACME_CONFIG_DIR, $this->cert_id);
$secret_key_filename = "{$configdir}/secret.key";
$secret_key_filename = "{$configdir}secret.key";
$secret_key_data = (string)$this->config->dns_nsupdate_key . "\n";
file_put_contents($secret_key_filename, $secret_key_data);

2
security/acme-client/src/opnsense/mvc/app/library/OPNsense/AcmeClient/LeValidation/DnsTransip.php
View file

@ -40,7 +40,7 @@ class DnsTransip extends Base implements LeValidationInterface
public function prepare()
{
$configdir = (string)sprintf(self::ACME_CONFIG_DIR, $this->cert_id);
$secret_key_filename = "{$configdir}/secret.key";
$secret_key_filename = "{$configdir}secret.key";
$secret_key_data = (string)$this->config->dns_transip_key . "\n";
file_put_contents($secret_key_filename, $secret_key_data);

6
security/acme-client/src/opnsense/mvc/app/library/OPNsense/AcmeClient/LeValidation/HttpOpnsense.php
View file

@ -127,10 +127,10 @@ class HttpOpnsense extends Base implements LeValidationInterface
}
// Create temporary port forward to allow acme challenges to get through
File::file_put_contents("{$configdir}/acme_anchor_setup", "rdr-anchor \"acme-client\"\n", 0600);
File::file_put_contents("{$configdir}acme_anchor_setup", "rdr-anchor \"acme-client\"\n", 0600);
Shell::run_safe('/sbin/pfctl -f %s', ["{$configdir}/acme_anchor_setup"]);
File::file_put_contents("{$configdir}/acme_anchor_rules", $anchor_rules, 0600);
Shell::run_safe('/sbin/pfctl -a %s -f %s', ['acme-client', "{$configdir}/acme_anchor_rules"]);
File::file_put_contents("{$configdir}acme_anchor_rules", $anchor_rules, 0600);
Shell::run_safe('/sbin/pfctl -a %s -f %s', ['acme-client', "{$configdir}acme_anchor_rules"]);
}
public function cleanup()

6
security/acme-client/src/opnsense/mvc/app/library/OPNsense/AcmeClient/LeValidation/TlsalpnAcme.php
View file

@ -128,10 +128,10 @@ class TlsalpnAcme extends Base implements LeValidationInterface
}
// Create temporary port forward to allow acme challenges to get through
File::file_put_contents("{$configdir}/acme_anchor_setup", "rdr-anchor \"acme-client\"\n", 0600);
File::file_put_contents("{$configdir}acme_anchor_setup", "rdr-anchor \"acme-client\"\n", 0600);
Shell::run_safe('/sbin/pfctl -f %s', ["{$configdir}/acme_anchor_setup"]);
File::file_put_contents("{$configdir}/acme_anchor_rules", $anchor_rules, 0600);
Shell::run_safe("/sbin/pfctl -a %s -f %s", ['acme-client', "{$configdir}/acme_anchor_rules"]);
File::file_put_contents("{$configdir}acme_anchor_rules", $anchor_rules, 0600);
Shell::run_safe("/sbin/pfctl -a %s -f %s", ['acme-client', "{$configdir}acme_anchor_rules"]);
}
public function cleanup()