-
Environment:
certbot 0.31.0
Debian 4.19.67-2+deb10u1 (2019-09-20) x86_64 GNU/Linux
self-hosted CA (Nexus CM)
With my server I create a request via certbot to get a new certificate. This succeeds…
-
貌似并不是标准的ACME 协议.
csrEager 是专属的.
目前只能和自己的 client 通信吗: https://github.com/digitalsign/acme-client
如果只能和自己的专属 client 通信, 又何必包 ACME 协议呢. 不如直接把官方的api 包一个 cli 就好了.
目前这样既包服务器 又包 client 岂不是增加…
-
**Background**
It is well known that certbot doesn't play nice in a dockerized environment, because certs must exist before nginx can serve, etc. The typical workaround is to initially run the `--sta…
-
I just noticed that acme-tiny still uses a regular GET to get challenges info, retrieve the certificate, and poll authorization state. This will stop working in November 2019; from then on signed POST…
-
We're using acme.sh (master) and our own ACME-Server.
According to https://tools.ietf.org/html/rfc8555#section-7.1.6 there is a state "processing"
This state is not handled by acme.sh. I'll provid…
-
##### SUMMARY
[RFC 8555](https://www.rfc-editor.org/rfc/rfc8555.txt), the finalized ACME draft, has just been released! \o/
Update the documentation and all comments to reference this RFC (when no…
-
While working on https://github.com/certbot/certbot/pull/7254 I noticed that Certbot was crashing (`NoneType is not an iterable`) against responses from Pebble.
It comes down to JSON being encoded …
-
https://github.com/certbot/certbot/blob/b0d960f102c998d8231c0ee48952b488f10864ac/acme/acme/messages.py#L20-L36 defines a number of ACME error types and their descriptions, however, that list is not up…
-
I see that there are some code to ensure backward compatibility with CA different from the default (now acme-v02) but I found that it leads to a keyError about `newAccount` in there :
```
_send_s…
-
**Is your feature request related to a problem? Please describe.**
This request is specific to using Let's Encrypt ACMEv2 as the issuer but may apply to other issuers.
Problem: There is currently …