Currently, if /acme/auto is requested and the certificate is present and more than 30 days away from expiring, then no action is taken.
This is a problem if the operator changes the hostname configuration (NJS_ACME_SERVER_NAMES variable) while the certificate is still in its validity period because the new hostname(s) in the configuration will not be supported by the existing certificate.
This request is to validate that the hostnames in the stored certificate match the hostnames in the njs_acme configuration. If they don't match, then we should kick off a new cert request.
Currently, if
/acme/autois requested and the certificate is present and more than 30 days away from expiring, then no action is taken.This is a problem if the operator changes the hostname configuration (
NJS_ACME_SERVER_NAMESvariable) while the certificate is still in its validity period because the new hostname(s) in the configuration will not be supported by the existing certificate.This request is to validate that the hostnames in the stored certificate match the hostnames in the njs_acme configuration. If they don't match, then we should kick off a new cert request.