diff --git a/CHANGELOG b/CHANGELOG index ae49f816..f9c671dc 100644 --- a/CHANGELOG +++ b/CHANGELOG @@ -1,12 +1,21 @@ # Change Log This file contains a log of major changes in dehydrated -## [x.x.x] - xxxx-xx-xx +## [0.6.2] - 2018-04-25 +## Added +- New deploy_ocsp hook +- Allow account registration with custom key + ## Changed - Don't walk certificate chain for ACMEv2 (certificate contains chain by default) - -## Added -- ?? +- Improved documentation on wildcards + +## Fixes +- Added workaround for compatibility with filesystem ACLs +- Close unwanted external file-descriptors +- Fixed JSON parsing on force-renewal +- Fixed cleanup of challenge files/dns-entries on validation errors +- A few more minor fixes ## [0.6.1] - 2018-03-13 ## Changed diff --git a/README.md b/README.md index 2c56b383..0817af84 100644 --- a/README.md +++ b/README.md @@ -2,20 +2,21 @@ ![](docs/logo.jpg) -This is a client for signing certificates with an ACME-server (currently only provided by Let's Encrypt) implemented as a relatively simple bash-script. -Dehydrated supports both ACME v1 and the new ACME v2 including support for wildcard certificates! +Dehydrated is a client for signing certificates with an ACME-server (e.g. Let's Encrypt) implemented as a relatively simple (zsh-compatible) bash-script. +This client supports both ACME v1 and the new ACME v2 including support for wildcard certificates! It uses the `openssl` utility for everything related to actually handling keys and certificates, so you need to have that installed. -Other dependencies are: cURL, sed, grep, mktemp (all found on almost any system, cURL being the only exception) +Other dependencies are: cURL, sed, grep, awk, mktemp (all found pre-installed on almost any system, cURL being the only exception). Current features: -- Signing of a list of domains -- Signing of a CSR -- Renewal if a certificate is about to expire or SAN (subdomains) changed +- Signing of a list of domains (including wildcard domains!) +- Signing of a custom CSR (either standalone or completely automated using hooks!) +- Renewal if a certificate is about to expire or defined set of domains changed - Certificate revocation -Please keep in mind that this software and even the acme-protocol are relatively young and may still have some unresolved issues. Feel free to report any issues you find with this script or contribute by submitting a pull request. +Please keep in mind that this software, the ACME-protocol and all supported CA servers out there are relatively young and there might be a few issues. Feel free to report any issues you find with this script or contribute by submitting a pull request, +but please check for duplicates first (feel free to comment on those to get things rolling). ## Getting started @@ -87,12 +88,12 @@ Without those hobbies I probably would never have started working on dehydrated I'd really appreciate if you could [donate a bit of money](https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=23P9DSJBTY7C8) so I can buy cool stuff (while still being able to afford food :D). -If you have hardware laying around that you think I'd enjoy playing with (e.g. decomissioned but still modern-ish servers, +If you have hardware laying around that you think I'd enjoy playing with (e.g. decommissioned but still modern-ish servers, 10G networking hardware, enterprise grade routers or APs, interesting ARM/MIPS boards, etc.) and that you would be willing -to ship to me please contact me at `donations@dehydrated.de` or on Twitter [@lukas2511](https://twitter.com/lukas2511). +to ship to me please contact me at `donations@dehydrated.io` or on Twitter [@lukas2511](https://twitter.com/lukas2511). -If you want your name to be added to the [donations list](https://dehydrated.de/donations.html) please add a note or send me an -email `donations@dehydrated.de`. I respect your privacy and won't publish your name without permission. +If you want your name to be added to the [donations list](https://dehydrated.io/donations.html) please add a note or send me an +email `donations@dehydrated.io`. I respect your privacy and won't publish your name without permission. Other ways of donating: - [My Amazon Wishlist](http://www.amazon.de/registry/wishlist/1TUCFJK35IO4Q) diff --git a/dehydrated b/dehydrated index 39153f0f..adc3dcad 100755 --- a/dehydrated +++ b/dehydrated @@ -1,7 +1,7 @@ #!/usr/bin/env bash # dehydrated by lukas2511 -# Source: https://dehydrated.de +# Source: https://dehydrated.io # # This script is licensed under The MIT License (see LICENSE for more information). @@ -17,7 +17,7 @@ umask 077 # paranoid umask, we're creating private keys exec 3>&- exec 4>&- -VERSION="git-master-after-0.6.1" +VERSION="0.6.2" # Find directory in which this script is stored by traversing all symbolic links SOURCE="${0}" @@ -1037,7 +1037,7 @@ command_version() { load_config noverify echo "Dehydrated by Lukas Schauer" - echo "https://dehydrated.de" + echo "https://dehydrated.io" echo "" echo "Dehydrated version: ${VERSION}" revision="$(cd "${SCRIPTDIR}"; git rev-parse HEAD 2>/dev/null || echo "unknown")"