Mohammed Al Sahaf 
							
						 
					 
					
						
						
							
							
						
						
						
							
						
						
							44d078b670 
							
						 
					 
					
						
						
							
							acme_server: fix policy parsing in caddyfile ( #7006 )  
						
						... 
						
						
	
		
			
	 
	
	
		
	
	
		
			
				
	Tests / test (./cmd/caddy/caddy, ~1.24.1, ubuntu-latest, 0, 1.24, linux) (push) Failing after 1m55s 
				
			 
		
			
				
	Tests / test (s390x on IBM Z) (push) Has been skipped 
				
			 
		
			
				
	Tests / goreleaser-check (push) Has been skipped 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, aix) (push) Successful in 1m12s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, darwin) (push) Successful in 1m14s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, dragonfly) (push) Successful in 1m12s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, freebsd) (push) Successful in 1m14s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, illumos) (push) Successful in 1m12s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, linux) (push) Successful in 1m13s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, netbsd) (push) Successful in 1m15s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, openbsd) (push) Successful in 1m19s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, solaris) (push) Successful in 1m13s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, windows) (push) Successful in 1m15s 
				
			 
		
			
				
	Lint / lint (ubuntu-latest, linux) (push) Successful in 2m2s 
				
			 
		
			
				
	Lint / govulncheck (push) Successful in 1m32s 
				
			 
		
			
				
	Tests / test (./cmd/caddy/caddy, ~1.24.1, macos-14, 0, 1.24, mac) (push) Has been cancelled 
				
			 
		
			
				
	Tests / test (./cmd/caddy/caddy.exe, ~1.24.1, windows-latest, True, 1.24, windows) (push) Has been cancelled 
				
			 
		
			
				
	Lint / lint (macos-14, mac) (push) Has been cancelled 
				
			 
		
			
				
	Lint / lint (windows-latest, windows) (push) Has been cancelled 
				
			 
		
		
	 
 
	 
						
						Signed-off-by: Mohammed Al Sahaf <msaa1990@gmail.com> 
						
						
					 
					
						2025-05-08 11:54:07 -06:00 
						 
				 
			
				
					
						
							
							
								Matthew Holt 
							
						 
					 
					
						
						
							
							
						
						
						
							
						
						
							84364ffcd0 
							
						 
					 
					
						
						
							
							caddypki: Remove lifetime check at Caddyfile parse ( fix   #6878 )  
						
						... 
						
						
	
		
			
	 
	
	
		
	
	
		
			
				
	Lint / lint (macos-14, mac) (push) Waiting to run 
				
			 
		
			
				
	Lint / lint (windows-latest, windows) (push) Waiting to run 
				
			 
		
			
				
	Tests / test (./cmd/caddy/caddy, ~1.24.1, ubuntu-latest, 0, 1.24, linux) (push) Failing after 1m30s 
				
			 
		
			
				
	Tests / test (s390x on IBM Z) (push) Has been skipped 
				
			 
		
			
				
	Tests / goreleaser-check (push) Has been skipped 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, aix) (push) Successful in 1m19s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, darwin) (push) Successful in 1m17s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, dragonfly) (push) Successful in 1m15s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, freebsd) (push) Successful in 1m15s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, illumos) (push) Successful in 1m16s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, linux) (push) Successful in 1m17s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, netbsd) (push) Successful in 1m18s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, openbsd) (push) Successful in 1m16s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, solaris) (push) Successful in 1m14s 
				
			 
		
			
				
	Cross-Build / build (~1.24.1, 1.24, windows) (push) Successful in 1m19s 
				
			 
		
			
				
	Lint / lint (ubuntu-latest, linux) (push) Successful in 1m56s 
				
			 
		
			
				
	Lint / govulncheck (push) Successful in 1m9s 
				
			 
		
			
				
	Tests / test (./cmd/caddy/caddy, ~1.24.1, macos-14, 0, 1.24, mac) (push) Has been cancelled 
				
			 
		
			
				
	Tests / test (./cmd/caddy/caddy.exe, ~1.24.1, windows-latest, True, 1.24, windows) (push) Has been cancelled 
				
			 
		
		
	 
 
	 
						
						The same check is done at provision time of the ACME server, and that is the correct place to do it. 
						
						
					 
					
						2025-03-06 11:40:03 -07:00 
						 
				 
			
				
					
						
							
							
								Ranveer Avhad 
							
						 
					 
					
						
						
							
							
						
						
						
							
						
						
							e6f46c8d78 
							
						 
					 
					
						
						
							
							acmeserver: Add sign_with_root for Caddyfile ( #6345 )  
						
						... 
						
						
						
						* Added sign_with_root option available in the Caddyfile
* Added tests for sign_with_root to validate the adapted JSON config 
						
						
					 
					
						2024-05-27 20:06:54 -04:00 
						 
				 
			
				
					
						
							
							
								Mohammed Al Sahaf 
							
						 
					 
					
						
						
							
							
						
						
						
							
						
						
							931656bd68 
							
						 
					 
					
						
						
							
							acmeserver: add policy field to define allow/deny rules ( #5796 )  
						
						... 
						
						
						
						* acmeserver: support specifying the allowed challenge types
* add caddyfile adapt tests
* acmeserver: add `policy` field to define allow/deny rules
* allow `omitempty` to work
* add caddyfile support for `policy`
* remove "uri domain" policy
* fmt the files
* add docs
* do not support `CommonName`; the field is deprecated
* r/DNSDomains/Domains/g
* Caddyfile docs
* add tests
* move `Policy` to top of file 
						
						
					 
					
						2024-02-24 02:26:00 +03:00 
						 
				 
			
				
					
						
							
							
								Mohammed Al Sahaf 
							
						 
					 
					
						
						
							
							
						
						
						
							
						
						
							e1aa862e6a 
							
						 
					 
					
						
						
							
							acmeserver: support specifying the allowed challenge types ( #5794 )  
						
						... 
						
						
						
						* acmeserver: support specifying the allowed challenge types
* add caddyfile adapt tests
* introduce basic acme_server test
* skip acme test on unsuitable environments
* skip integration tests of ACME
* documentation
* add negative-scenario test for mismatched allowed challenges
* a bit more docs
* fix tests for ACME challenges
* appease the linter
* skip ACME tests on s390x
* enable ACME challenge tests on all machines
* Apply suggestions from code review
Co-authored-by: Matt Holt <mholt@users.noreply.github.com>
---------
Co-authored-by: Matt Holt <mholt@users.noreply.github.com> 
						
						
					 
					
						2024-02-08 11:42:03 +03:00 
						 
				 
			
				
					
						
							
							
								Francis Lavoie 
							
						 
					 
					
						
						
							
							
						
						
						
							
						
						
							750d0b8331 
							
						 
					 
					
						
						
							
							caddyfile: Normalize & flatten all unmarshalers ( #6037 )  
						
						
						
						
					 
					
						2024-01-23 19:36:59 -05:00 
						 
				 
			
				
					
						
							
							
								Francis Lavoie 
							
						 
					 
					
						
						
							
							
						
						
						
							
						
						
							3f20a7c9f3 
							
						 
					 
					
						
						
							
							acmeserver: Configurable resolvers, fix smallstep deprecations ( #5500 )  
						
						... 
						
						
						
						* acmeserver: Configurable `resolvers`, fix smallstep deprecations
* Improve default net/port
* Update proxy resolvers parsing to use the new function
* Update listeners.go
Co-authored-by: itsxaos <33079230+itsxaos@users.noreply.github.com>
---------
Co-authored-by: itsxaos <33079230+itsxaos@users.noreply.github.com> 
						
						
					 
					
						2023-05-03 17:07:22 +00:00 
						 
				 
			
				
					
						
							
							
								Kyle McCullough 
							
						 
					 
					
						
						
							
							
						
						
						
							
						
						
							bfaf2a8201 
							
						 
					 
					
						
						
							
							acme_server: Configurable default lifetime for issued certificates ( #5232 )  
						
						... 
						
						
						
						* acme_server: add certificate lifetime configuration option
Signed-off-by: Kyle McCullough <kylemcc@gmail.com>
* pki: allow intermediate cert lifetime to be configured
Signed-off-by: Kyle McCullough <kylemcc@gmail.com>
Signed-off-by: Kyle McCullough <kylemcc@gmail.com> 
						
						
					 
					
						2022-12-06 00:12:26 -07:00 
						 
				 
			
				
					
						
							
							
								Francis Lavoie 
							
						 
					 
					
						
						
							
							
						
						
						
							
						
						
							ee7c92ec9b 
							
						 
					 
					
						
						
							
							reverseproxy: Mask the WS close message when we're the client ( #5199 )  
						
						... 
						
						
						
						* reverseproxy: Mask the WS close message when we're the client
* weakrand
* Bump golangci-lint version so path ignores work on Windows
* gofmt
* ugh, gofmt everything, I guess 
						
						
					 
					
						2022-11-14 09:38:02 -07:00 
						 
				 
			
				
					
						
							
							
								Matthew Holt 
							
						 
					 
					
						
						
							
							
						
						
						
							
						
						
							bf50d7010a 
							
						 
					 
					
						
						
							
							acmeserver: Support custom CAs from Caddyfile  
						
						... 
						
						
						
						The HTTP Caddyfile adapter can now configure the PKI app, and the acme_server directive can now be used to specify a custom CA used for issuing certificates. More customization options can follow later as needed. 
						
						
					 
					
						2021-02-02 17:23:52 -07:00 
						 
				 
			
				
					
						
							
							
								Matthew Holt 
							
						 
					 
					
						
						
							
							
						
						
						
							
						
						
							a285fe4129 
							
						 
					 
					
						
						
							
							caddypki: Add 'acme_server' Caddyfile directive  
						
						
						
						
					 
					
						2020-06-03 09:59:36 -06:00