6e0161470e
Update newest copyright year to 2021 ( #3464 )
2021-01-27 17:02:06 +01:00
2d32c66fd7
Update copyright to 2020 ( #3149 )
2020-01-28 15:49:23 +01:00
aefe2fd640
Rename to p1_acme
2019-09-25 13:10:47 +03:00
5770946f03
Correctly handle unicode in log messages
2019-09-23 15:17:20 +03:00
2e1e128833
Fix unicode formatting in ACME module
2019-09-22 20:11:54 +03:00
75fe6f44d2
Fix IDNA support in ACME requests
2019-09-22 12:44:31 +03:00
30346a56de
Don't forget to log an error message on IDNA failure
2019-09-22 11:30:20 +03:00
a616cc04cb
Support IDN hostnames in ACME requests
2019-09-22 11:04:38 +03:00
d5e0ccb04a
Don't attempt to create acme directory on ejabberd startup
2019-09-22 01:14:29 +03:00
ea09497038
Slightly improve arg example
2019-09-22 01:03:08 +03:00
f5156390bb
Don't allow requesting certificates for localhost or IP-like domains
2019-09-22 00:53:03 +03:00
12691e738b
Improve warning message
2019-09-22 00:21:12 +03:00
9805b1a73a
Fix typo
2019-09-20 14:04:00 +03:00
4cdb4c2090
Don't auto request certificate for localhost and IP-like domains
2019-09-20 13:03:25 +03:00
e227940b85
Improve ACME implementation
...
Fixes #2487 , fixes #2590 , fixes #2638
2019-09-20 12:36:31 +03:00
6f5d99275b
Process unexpected messages uniformly
2019-07-12 11:55:36 +03:00
b479fe5315
Use correct stacktrace in logging macros
...
By calling erlang:get_stacktrace() inside a lager function
we obtain actually a stacktrace of the lager function, not
the one we got during exception. This is not a problem for
newest Erlang versions though.
2019-06-26 00:05:41 +03:00
a3e0cbbdd8
Make logging messages more consistent
2019-06-24 20:32:34 +03:00
a02cff0e78
Use new configuration validator
2019-06-14 12:33:26 +03:00
c88a2d0569
Add code for handling deprecations of get_stacktrace()
2018-12-13 11:46:53 +01:00
39fa1a810d
Move certificates processing code to pkix application
...
==== WARNING: MUST BE ADDED TO RELEASE NOTES =====
The commit introduces the following incompatibility:
- Option 'ca_path' is deprecated and has no effect anymore:
option 'ca_file' should be used instead if needed.
==================================================
2018-09-27 20:37:27 +03:00
2d246f61dd
Fix some dialyzer warnings
2018-09-09 09:59:08 +03:00
88d0b71d58
Get stacktrace out of lager context
...
Calling erlang:get_stacktrace() inside lager functions produces
stacktraces of the logging function itself, not the function which has failed.
2018-09-01 19:37:26 +03:00
f3f3b1586e
Fix typo in command description
2018-08-13 16:42:16 +02:00
5509e648ad
Allow acme and oauth commands to be read by gen_markdown_doc_for_commands
2018-08-07 16:58:48 +02:00
66591b1c0d
Improve URLs validation
2018-06-29 11:06:24 +03:00
fd8e07af47
Get rid of ejabberd.hrl header
...
The header consisted of too many unrelated stuff and macros misuse.
Some stuff is moved into scram.hrl and type_compat.hrl.
All macros have been replaced with the corresponding function calls.
TODO: probably type_compat.hrl is not even needed anymore since
we support only Erlang >= OTP 17.5
2018-06-14 14:00:47 +03:00
f6ebbe4c78
Fix compilation ordering in mix by s/-behavior/-behaviour/
2018-01-31 14:57:43 +01:00
49c4aa238f
Change file mode of ACME certficates
2017-11-19 10:10:21 +03:00
e709d6561c
Re-read ACME certificates on config reload
2017-11-19 09:56:05 +03:00
f06805534c
Fix renew_certificates ejabberdctl command
...
Thanks to Konstantinos Kallas
2017-11-17 18:37:49 +03:00
4f12359b9c
Don't forget to include intermediate ACME certificate
...
Thanks to Konstantinos Kallas
2017-11-17 17:17:19 +03:00
f599c2ef82
Fix ACME options validation
2017-11-17 15:55:33 +03:00
224a3e13c9
Improve ACME options validation
2017-11-17 13:06:04 +03:00
4835537776
Move ejabberdctl ACME commands to other location
2017-11-17 12:50:27 +03:00
ce98226603
Make ACME code working with ejabberd_pkix
2017-11-17 11:59:40 +03:00
b04c6b7d75
Merge branch 'lets_encrypt_acme_support' of git://github.com/angelhof/ejabberd into angelhof-lets_encrypt_acme_support
...
Conflicts:
rebar.config
src/ejabberd_pkix.erl
2017-11-15 10:01:30 +03:00
ce99db0595
Explain what is needed for the acme configuration and other small changes
...
1. Add a request handler in ejabberd_http and explain how to configure the http listener so that the challenges can be solved.
2. Make acme configuration optional by providing defaults in ejabberd_acme.
3. Save the CA that the account has been created in so that it creates a new account when connecting to a new CA.
4. Small spec change in acme configuration.
2017-11-14 14:12:33 +02:00
f55a8d045d
Solve Travis build xref problem
...
Travis build failed on xref because some functions that I used did not exist in OTP versions 17.5, 18.3
Those functions are: ets:take/2, lists:join/2, erlang:timestamp/0.
2017-09-06 18:10:38 +03:00
80b44d8c15
Remove some unused variable warnings, replace lists:join with string join
2017-08-25 12:08:16 +03:00
62903155fd
Show SANs in list_Certificates
2017-08-22 14:44:19 +03:00
25ca6e5582
Acquire certificates for all subdomains of a host and include them in SAN
2017-08-22 13:36:34 +03:00
10f7b5a548
Remove partial RSA key support
2017-08-22 10:25:37 +03:00
f2876bdad7
Add certfile when acquired
2017-08-22 10:12:42 +03:00
9b3e160e18
Remove some debugging INFO_MSGs
2017-08-19 17:47:05 +03:00
15dd88385f
Delete a development acme module
2017-08-19 16:58:06 +03:00
dd42d52ff9
Merge remove_account_option branch
2017-08-19 13:36:42 +03:00
e45f7ddfec
Cleanup some comments:
2017-08-19 13:32:13 +03:00
7cc7b74f1e
Add acme certificates for all configured hosts in ejabberd_pkix
2017-08-19 12:50:40 +03:00
ddfe8742c7
Add behaviour ejabberd_config in ejabberd_acme in order to validate the config
2017-08-19 11:35:15 +03:00
Badlop