mirror of
				https://github.com/caddyserver/caddy.git
				synced 2025-10-25 15:52:45 -04:00 
			
		
		
		
	httpcaddyfile: Adjust iterator when removing AP (fix #3953)
This commit is contained in:
		
							parent
							
								
									144b65cf99
								
							
						
					
					
						commit
						7846bc1e06
					
				| @ -453,7 +453,7 @@ func newBaseAutomationPolicy(options map[string]interface{}, warnings []caddycon | ||||
| // ZeroSSL), the proper wrapper over acmeIssuer will be returned instead. | ||||
| func disambiguateACMEIssuer(acmeIssuer *caddytls.ACMEIssuer) certmagic.Issuer { | ||||
| 	// as a special case, we integrate with ZeroSSL's ACME endpoint if it looks like an | ||||
| 	// implicit ZeroSSL configuration (this requires a  wrapper type over ACMEIssuer | ||||
| 	// implicit ZeroSSL configuration (this requires a wrapper type over ACMEIssuer | ||||
| 	// because of the EAB generation; if EAB is provided, we can use plain ACMEIssuer) | ||||
| 	if strings.Contains(acmeIssuer.CA, "acme.zerossl.com") && acmeIssuer.ExternalAccount == nil { | ||||
| 		return &caddytls.ZeroSSLIssuer{ACMEIssuer: acmeIssuer} | ||||
| @ -518,6 +518,7 @@ func consolidateAutomationPolicies(aps []*caddytls.AutomationPolicy) []*caddytls | ||||
| 					// '*.com', which might be different (yes we've seen this happen) | ||||
| 					if automationPolicyShadows(i, aps) >= j { | ||||
| 						aps = append(aps[:i], aps[i+1:]...) | ||||
| 						i-- | ||||
| 					} | ||||
| 				} else { | ||||
| 					// avoid repeated subjects | ||||
|  | ||||
| @ -0,0 +1,96 @@ | ||||
| # issue #3953 | ||||
| 
 | ||||
| { | ||||
| 	cert_issuer zerossl api_key | ||||
| } | ||||
| 
 | ||||
| example.com { | ||||
| 	tls { | ||||
| 		on_demand | ||||
| 	} | ||||
| } | ||||
| 
 | ||||
| http://example.net { | ||||
| } | ||||
| 
 | ||||
| :1234 { | ||||
| } | ||||
| ---------- | ||||
| { | ||||
| 	"apps": { | ||||
| 		"http": { | ||||
| 			"servers": { | ||||
| 				"srv0": { | ||||
| 					"listen": [ | ||||
| 						":1234" | ||||
| 					] | ||||
| 				}, | ||||
| 				"srv1": { | ||||
| 					"listen": [ | ||||
| 						":443" | ||||
| 					], | ||||
| 					"routes": [ | ||||
| 						{ | ||||
| 							"match": [ | ||||
| 								{ | ||||
| 									"host": [ | ||||
| 										"example.com" | ||||
| 									] | ||||
| 								} | ||||
| 							], | ||||
| 							"terminal": true | ||||
| 						} | ||||
| 					] | ||||
| 				}, | ||||
| 				"srv2": { | ||||
| 					"listen": [ | ||||
| 						":80" | ||||
| 					], | ||||
| 					"routes": [ | ||||
| 						{ | ||||
| 							"match": [ | ||||
| 								{ | ||||
| 									"host": [ | ||||
| 										"example.net" | ||||
| 									] | ||||
| 								} | ||||
| 							], | ||||
| 							"terminal": true | ||||
| 						} | ||||
| 					], | ||||
| 					"automatic_https": { | ||||
| 						"skip": [ | ||||
| 							"example.net" | ||||
| 						] | ||||
| 					} | ||||
| 				} | ||||
| 			} | ||||
| 		}, | ||||
| 		"tls": { | ||||
| 			"automation": { | ||||
| 				"policies": [ | ||||
| 					{ | ||||
| 						"subjects": [ | ||||
| 							"example.com" | ||||
| 						], | ||||
| 						"issuers": [ | ||||
| 							{ | ||||
| 								"api_key": "api_key", | ||||
| 								"module": "zerossl" | ||||
| 							} | ||||
| 						], | ||||
| 						"on_demand": true | ||||
| 					}, | ||||
| 					{ | ||||
| 						"issuers": [ | ||||
| 							{ | ||||
| 								"api_key": "api_key", | ||||
| 								"module": "zerossl" | ||||
| 							} | ||||
| 						] | ||||
| 					} | ||||
| 				] | ||||
| 			} | ||||
| 		} | ||||
| 	} | ||||
| } | ||||
		Loading…
	
	
			
			x
			
			
		
	
		Reference in New Issue
	
	Block a user