github
/
acme4j
mirror of https://github.com/shred/acme4j
1
0
Fork 0
Code Issues Releases Wiki Activity
867 Commits
4 Branches
43 Tags
3.9 MiB
Commit Graph

867 Commits (a6469071fad5765b460913cfbf9f6db3e39c7c53)

Author SHA1 Message Date
Jared Crawford a6469071fa Add support for draft-aaron-acme-profiles 2025-01-09 19:34:16 -05:00
Jared Crawford c7ec1d933e Add support for draft-aaron-acme-profiles 2025-01-09 19:32:19 -05:00
Jared Crawford c7e6d3169c Add support for draft-aaron-acme-profiles 2025-01-09 19:17:32 -05:00
Richard Körber 318aeaab9d
Single method to get the certificate 2024-10-21 07:11:09 +02:00
Richard Körber 6a24d85364
ZeroSSL supports ARI now 2024-10-20 09:34:26 +02:00
Richard Körber 7a02a2f857
Update to draft-ietf-acme-ari-06 
No changes to the protocol
 2024-10-20 09:34:26 +02:00
Richard Körber c6f6ee9d07
Check if auto-renewal-get is supported by CA 2024-10-20 09:34:26 +02:00
Richard Körber e88b4ef68f
Add new CAs to list of supported CAs 2024-10-20 08:59:30 +02:00
Richard Körber d9186ede14
Fix outdated newAccount test response 2024-10-01 14:50:17 +02:00
Richard Körber 87bbb9efbf
Add Buypass provider 2024-09-22 16:54:17 +02:00
Richard Körber beec5156c2
Add Google CA provider 2024-09-22 16:32:00 +02:00
Richard Körber 0ccd68c09a
Update to draft-ietf-acme-ari-05 2024-08-24 12:19:13 +02:00
Richard Körber afa60ae76f
Document how to use different Pebble domain (#160) 2024-08-22 20:18:07 +02:00
Richard Körber e589b16d98
Allow custom pebble.minica.pem files 
Also changes from a Java proprietary truststore file to the official
Pebble PEM file.
 2024-08-22 20:16:35 +02:00
Richard Körber 793bcd7ce1
[maven-release-plugin] prepare for next development iteration 2024-08-18 12:20:45 +02:00
Richard Körber 21751be264
[maven-release-plugin] prepare release v3.4.0 2024-08-18 12:20:45 +02:00
Richard Körber 171ee474c0
Deprecate update() and AcmeRetryAfterException 2024-08-18 11:42:50 +02:00
Richard Körber 05d826d83e
Dependency updates 2024-08-17 17:29:11 +02:00
Richard Körber b897dc277d
Add new methods for status change busy waiting 2024-08-17 17:20:52 +02:00
Richard Körber ae60431a79
Disable ssl.com staging unit tests 
The ssl.com staging server's certificate seems to be unmonitored,
causing the acme4j build chain to break from time to time when their
certificate has expired. As this is blocking development, I have
decided to disable all related unit tests, and add a corresponding
note to the documentation.

The acme4j ssl.com provider is marked as experimental now, since it
is not fully covered by unit tests anymore.
 2024-06-30 10:43:36 +02:00
Richard Körber a9ce33a921
Update to draft-ietf-acme-ari-04 
Only changes to the docs were necessary.
 2024-06-11 18:54:31 +02:00
Richard Körber a85ff19cf8
[maven-release-plugin] prepare for next development iteration 2024-06-07 17:51:36 +02:00
Richard Körber 2bbe5c5815
[maven-release-plugin] prepare release v3.3.1 2024-06-07 17:51:35 +02:00
Richard Körber 5788b0e6dd
Update dependencies 2024-06-07 17:44:53 +02:00
Richard Körber 514b188c69
Remove workaround for Pebble container 2024-06-07 17:30:47 +02:00
Richard Körber 6120a2b476
Do not set autoRenewal on cert replacement (fixes #158) 2024-06-07 17:18:04 +02:00
Richard Körber 01249294c8
Mention Problem in docs 2024-05-15 18:43:49 +02:00
Richard Körber f9768d1793
[maven-release-plugin] prepare for next development iteration 2024-05-15 16:02:32 +02:00
Richard Körber feb3d59f7b
[maven-release-plugin] prepare release v3.3.0 2024-05-15 16:02:32 +02:00
Richard Körber a718d82db2
Next version is 3.3.0 2024-05-15 16:01:52 +02:00
Richard Körber 5b14d15854
Discontinue version 2 2024-05-15 15:58:28 +02:00
Richard Körber 6d5da63b8e
Handle HTTP errors when fetching a nonce 
The nonce is fetched via HEAD request. Before this fix, if there was a
HTTP error, acme4j expected a Problem JSON body, which was not send
because of the HEAD request, and lead to an AcmeProtocolException.

Now either an AcmeException or AcmeRetryAfterException is thrown.
 2024-05-15 15:39:56 +02:00
Richard Körber aeff12088f
Update spotbugs and related new warnings (fixes #157) 2024-05-10 16:07:41 +02:00
Richard Körber 57ec36054a
Use latest Pebble docker image for integration tests 
- Updated to the latest pebble and challtestsrv images
- Could not use the docker images as intended, because I found no way to
  let the docker-maven-plugin setup a network with fixed IP addresses.
  The original images are based on scratch, so getent is not present
  there. The only fix was to build own images based on alpine, and copy
  the apps from the original images. Ugly, but working.
- Fixed broken integration tests
- Fixed an old bug: DNS records were removed with two trailing full
  stops.
 2024-03-19 22:16:35 +01:00
Richard Körber 4f36055be5
Update wiremock dependency 2024-03-19 21:52:38 +01:00
Richard Körber 773cacde4f
Add subdomain validation support (RFC 9444) 2024-03-15 17:18:01 +01:00
Richard Körber b5a7e00ac3
Use example IPs according to RFC3849/RFC5737 2024-03-13 20:27:12 +01:00
Richard Körber 97a6708db3
[maven-release-plugin] prepare for next development iteration 2024-03-11 17:28:06 +01:00
Richard Körber 565eab9fa4
[maven-release-plugin] prepare release v3.2.1 2024-03-11 17:28:06 +01:00
Richard Körber e97ced5e45
Dependency updates 2024-03-11 17:26:16 +01:00
Richard Körber 511954171d
Use en locale for uppercase/lowercase (fixes #156) 2024-03-09 16:14:20 +01:00
Richard Körber bbc057b81f
Align unit test names 2024-02-29 17:06:18 +01:00
Richard Körber 65e6e28bff
[maven-release-plugin] prepare for next development iteration 2024-02-28 18:02:55 +01:00
Richard Körber c16d1a45cc
[maven-release-plugin] prepare release v3.2.0 2024-02-28 18:02:55 +01:00
Richard Körber fdbd82e887
Minor documentation fixes 2024-02-28 18:00:02 +01:00
Richard Körber d40e30ab56
Revert json-unit-assertj update 
Reason: The new version would require JDK 17 for building
 2024-02-26 20:04:30 +01:00
Richard Körber d57f4abb60
Update dependencies 2024-02-26 18:45:39 +01:00
Richard Körber f9d479a8f7
Simplify handling of Retry-After header 2024-02-26 18:26:45 +01:00
Richard Körber 908e11b152
Workaround for ssl.com metadata bug 
ssl.com requires EAB for account creation, but the metadata's
"externalAccountRequired" property gives "false", indicating that no EAB
is used.

This fix patches the read directory's metadata if the ssl.com provider
is used.
 2024-02-26 18:26:45 +01:00
Richard Körber 081e53f137
SSL.com: Add support for ECC and RSA mode 2024-02-26 18:26:45 +01:00