7d91cfb512
Merge pull request #290 from mholt/le-graceful
...
Graceful restarts/reloads, refactoring
2015-10-27 14:17:40 -06:00
8548641dc1
letsencrypt: Check for errors
2015-10-27 13:02:47 -06:00
c46898592f
Merge branch 'letsencrypt' into le-graceful
...
Conflicts:
caddy/letsencrypt/letsencrypt.go
caddy/letsencrypt/renew.go
2015-10-27 12:59:55 -06:00
362ead2760
Minor test improvements
2015-10-27 12:53:31 -06:00
a6ea1e6b55
letsencrypt: -ca flag to customize CA server
2015-10-27 12:52:58 -06:00
c487b702a2
Little cleanup
2015-10-27 00:05:22 -06:00
bb6613d0ae
core: Fix SIGUSR1 so it actually reloads config
2015-10-26 17:57:32 -06:00
821c0fab09
core: Refactoring POSIX-only code for build tags
2015-10-26 16:49:05 -06:00
5b1962303d
core: More refactoring, code cleanup, docs
2015-10-26 14:55:03 -06:00
41c4484222
core: SIGUSR1 to reload config; some code cleanup
2015-10-26 14:28:50 -06:00
4ebff9a130
core: Major refactor for graceful restarts; numerous fixes
...
Merged config and app packages into one called caddy. Abstracted away caddy startup functionality making it easier to embed Caddy in any Go application and use it as a library. Graceful restart (should) now ensure child starts properly. Now piping a gob bundle to child process so that the child can match up inherited listeners to server address. Much cleanup still to do.
2015-10-26 13:34:31 -06:00
6936658019
letsencrypt: Work with latest lego changes
2015-10-25 19:30:29 -06:00
b5b31e398c
letsencrypt: Graceful restarts
...
Lots of refinement still needed and runs only on POSIX systems. Windows will not get true graceful restarts (for now), but we will opt for very, very quick forceful restarts. Also, server configs are no longer put into a map; it is critical that they stay ordered so that they can be matched with their sockets in the child process after forking.
This implementation of graceful restarts is probably not perfect, but it is a good start. Lots of details to attend to now.
2015-10-25 18:45:55 -06:00
f9f1aafe0c
Update to lego update. DevMode no longer exists.
2015-10-26 00:53:36 +01:00
91465d8e6f
Support for OCSP Stapling. Fixes #280
2015-10-24 04:36:54 +02:00
f8ad050dda
Update for latest lego changes (cert bundling)
2015-10-24 04:35:55 +02:00
2e5eb63850
Function name changed in lego
2015-10-23 16:29:05 +02:00
f24ecee603
letsencrypt: Basic renewal failover and better error handling
2015-10-21 21:28:33 -06:00
c5635f21a3
Merge pull request #283 from mholt/le-simplerenew
...
letsencrypt: Simplify timing mechanism for checking renewals
2015-10-21 17:08:57 -06:00
605f1942ef
Merge branch 'letsencrypt' into le-simplerenew
...
Conflicts:
config/letsencrypt/letsencrypt.go
2015-10-21 16:35:32 -06:00
a16beb98de
letsencrypt: Revoke certificate
2015-10-21 00:09:45 -06:00
38885e4301
Simplify timing mechanism for checking renewals
2015-10-20 20:16:01 -06:00
c626774da2
First, raw renewal implementation. Pretty basic :D
2015-10-20 02:44:00 +02:00
cd0b47d068
letsencrypt: Don't auto-configure loopback hosts or 'tls off'
...
User can specify 'tls off" in Caddyfile to force-disable automatic HTTPS configuration
2015-10-18 22:50:42 -06:00
4c93ab8c68
Merge branch 'configfix' into letsencrypt
2015-10-18 19:48:57 -06:00
c0ebe31560
Fix ServerBlockStorage so it actually stores stuff
2015-10-18 19:27:51 -06:00
cc1ff93250
letsencrypt: Fix Windows tests
2015-10-18 12:12:33 -06:00
42ac2d2dde
letsencrypt: More tests, tests for user.go & slight refactoring
2015-10-18 12:09:06 -06:00
d764111886
letsencrypt: Storage tests
2015-10-18 10:39:28 -06:00
8cd6b8aa99
letsencrypt: Tests for load/save RSA keys and redirPlaintextHost
2015-10-17 23:35:59 -06:00
da8a4fafcc
letsencrypt: Use existing certs & keys if already in storage
2015-10-17 22:55:50 -06:00
9f9de389d5
lego provides PEM-encoded certificate bytes for us
2015-10-17 21:18:46 -06:00
7568b0e215
Compatibility with latest lego commits (dev mode enabled)
2015-10-17 21:00:48 -06:00
a75663501d
Little more refactoring in letsencrypt
2015-10-17 20:51:46 -06:00
96ae288c4b
More refactoring; cleaning up code, preparing for tests
2015-10-17 20:44:33 -06:00
a3a826572f
Refactor letsencrypt code into its own package
2015-10-17 20:17:24 -06:00
fe7ad8ee05
core: Controller has field to persist server state
...
Also added ServerBlockHostIndex
2015-10-17 14:11:32 -06:00
307c2ffe3c
Remove obsolete test
2015-10-17 11:19:56 -06:00
06913ab74f
Oops (pass a pointer)
2015-10-17 11:15:43 -06:00
506630200b
Redirect HTTP requests to HTTPS by default
2015-10-17 09:36:25 -06:00
df194d567f
Don't forget to set port to "https" and indicate TLS enabled
2015-10-17 09:06:05 -06:00
9727603250
Try to use most recent user email if not provided
...
Also more comments and starting to clean up code
2015-10-17 00:01:32 -06:00
a0c8428f8c
Can issue and use SSL certs and serve sites
...
Code is a huge mess; much cleanup to follow.
2015-10-16 23:30:00 -06:00
dd91812b11
Merge branch 'configfix' into letsencrypt
2015-10-16 11:47:32 -06:00
10619f06b4
core: Disable TLS for sites where http is explicitly defined (fix)
2015-10-16 11:47:13 -06:00
0a1e472fc2
Merge branch 'configfix' into letsencrypt
...
Conflicts:
config/config.go
2015-10-16 11:40:44 -06:00
4e92c71259
LE flags, modified tis directive, moved LE stuff to own file
2015-10-16 11:38:56 -06:00
2236780190
Add ServerBlockIndex and ServerBlockHosts to Controller
...
This way, Setup functions have access to the list of hosts that share the server block, and also, if needed for some reason, the index of the server block in the input
2015-10-15 23:34:54 -06:00
691204ceed
OncePerServerBlock may now return an error
2015-10-15 11:38:17 -06:00
a518049fa2
Merge branch 'master' into configfix
2015-10-15 00:13:40 -06:00
Matt Holt
Matthew Holt
xenolf