3e589c1baa
- update to version 5.1.0 * certbot-nginx no longer creates and uses self-signed certificates as an intermediate step when installing certificates. * Fixed a bug in certbot-nginx that'd leave nginx configured with self-signed certificates if a user ran certbot enhance and they didn't have matching SSL server blocks.
Markéta Machová2025-10-14 08:11:30 +00:00
24d007db20
Accepting request 1302594 from devel:languages:python:certbot
Ana Guerrero2025-09-03 19:08:45 +00:00
d36338f8bb
- update to version 5.0.0 * Python 3.9 support was removed * Migrated most functionality from setup.py to pyproject.toml * certbot-nginx no longer uses socket.gethostname when generating self-signed certificates for use as a temporary step of installing certificates as it would sometimes result in strings that are too long to be used in the common name of a certificate. The static domain "temp-certbot-nginx.invalid" is now used instead
Markéta Machová2025-09-03 12:30:46 +00:00
41f876cab9
- update to version 4.2.0 * sync with the main certbot package
Markéta Machová2025-08-12 16:04:49 +00:00
adda0c736e
Accepting request 1286018 from devel:languages:python:certbot
Ana Guerrero2025-06-16 10:26:32 +00:00
de0d7211c6
- update to version 4.1.1 * Switched to src-layout from flat-layout to accommodate PEP 517 pip editable installs
Markéta Machová2025-06-13 14:52:44 +00:00
cefdfa1be9
Accepting request 1271252 from devel:languages:python:certbot
Ana Guerrero2025-04-22 15:29:15 +00:00
d0665daec0
- Update to 4.0.0: * Added + The --preferred-profile and --required-profile flags allow requesting a profile. * Changed + Certificates now renew with 1/3rd of lifetime left (or 1/2 of lifetime left, if the lifetime is shorter than 10 days). + removed acme.crypto_util._pyopenssl_cert_or_req_all_names + removed acme.crypto_util._pyopenssl_cert_or_req_san + removed acme.crypto_util.dump_pyopenssl_chain + removed acme.crypto_util.gen_ss_cert + removed certbot.crypto_util.dump_pyopenssl_chain + removed certbot.crypto_util.pyopenssl_load_certificate * Fixed + Moved RewriteEngine on directive added during apache http01 authentication to the end of the virtual host, so that it overwrites any RewriteEngine off directives that already exist and allows redirection to the challenge URL.
Steve Kowalik2025-04-22 03:48:11 +00:00
d63e268385
Accepting request 1254999 from devel:languages:python:certbot
Ana Guerrero2025-03-21 19:23:33 +00:00
6268fd7438
- update to version 3.3.0 * certbot-nginx now requires pyOpenSSL>=25.0.0. * certbot-nginx now requires pyparsing>=2.4.7. * Allow nginx plugin to parse non-breaking spaces in nginx configuration files. * When adding ssl listen directives in nginx server blocks, IP addresses are now preserved. * Nginx configurations can now have the http block in files other than the root (nginx.conf) * Nginx server_name directives with internal comments now ignore commented names
Markéta Machová2025-03-21 12:39:23 +00:00
d60426d341
Accepting request 1240567 from devel:languages:python:certbot
Ana Guerrero2025-01-27 19:57:25 +00:00
a00d91f270
- update to version 2.11.0 * sync with the main certbot package
Markéta Machová2024-06-25 12:23:49 +00:00
0d844b094f
Accepting request 1157920 from devel:languages:python:certbot
Ana Guerrero2024-03-14 16:45:31 +00:00
087099aa1a
- update to 2.9.0: * sync with the main certbot package * The nginx authenticator now configures all matching HTTP and HTTPS vhosts for the HTTP-01 * The docs extras for the certbot-apache and certbot-nginx * Follow updated Mozilla recommendations for Nginx ssl_protocols, * Stop disabling TLS session tickets in Nginx as it caused TLS * Match Nginx parser update in allowing variable names to start * Fix ranking of vhosts in Nginx so that all port-matching - Split the module from the main certboot package
Dirk Mueller2024-03-14 09:57:35 +00:00
ca12e39ae4
- update to 1.29.0: * --allow-subset-of-names will now additionally retry in cases where domains are rejected while creating or finalizing orders. This requires subproblem support from the ACME server * The show_account subcommand now uses the "newAccount" ACME endpoint to fetch the account data, so it doesn't rely on the locally stored account URL. This fixes situations where Certbot would use old ACMEv1 registration info with non-functional account URLs. * The generated Certificate Signing Requests are now generated as version 1 instead of version 3. This resolves situations in where strict enforcement of PKCS#10 meant that CSRs that were generated as version 3 were rejected
Dirk Mueller2022-07-11 13:25:46 +00:00
aa7c9767fe
- update to 1.28.0: * Updated Apache/NGINX TLS configs to document contents are based on ssl-config.mozilla.org * A change to order finalization has been made to the acme module and Certbot: - An order's certificate field will only be processed if the order's status is valid. - An order's error field will only be processed if the order's status is invalid.
Dirk Mueller2022-06-24 19:31:47 +00:00
af17c85d3d
- update to version 1.26.0 * certbot-nginx now requires pyparsing>=2.2.1. * Nginx plugin now checks included files for the singleton server_names_hash_bucket_size directive.
Markéta Machová2022-04-08 11:18:08 +00:00
a516c68bf8
- update to version 1.17.0 * When we increased the logging level on our nginx "Could not parse file" message, it caused a previously-existing inability to parse empty files to become more visible. We have now added the ability to correctly parse empty files, so that message should only show for more significant errors.
Markéta Machová2021-07-30 08:53:28 +00:00
ba40ce72c8
- update to version 1.13.0 * Support for Python 2 has been removed. * The nginx authenticator now configures all matching HTTP and HTTPS vhosts for the HTTP-01 challenge. It is now compatible with external HTTPS redirection by a CDN or load balancer.
Markéta Machová2021-03-08 08:49:26 +00:00
ba0a8f03f4
- update to version 1.7.0 * Added --nginx-sleep-seconds (default 1) for environments where nginx takes a long time to reload.
Markéta Machová2020-08-21 08:47:38 +00:00
c601a83552
- update to version 1.4.0 * Fix nginx plugin crash when non-ASCII configuration file is being read (instead, the user will be warned that UTF-8 must be used).
Markéta Machová2020-05-14 09:00:14 +00:00
9667af5af5
- update to version 1.2.0 * Added support for $hostname in nginx server_name directive * Remove ECDHE-RSA-AES128-SHA from NGINX ciphers list
Markéta Machová2020-02-21 16:01:40 +00:00
f92b4fd94d
- update to version 1.0.0 * The docs extras for the certbot-apache and certbot-nginx packages have been removed.
Markéta Machová2020-01-03 13:27:16 +00:00
134027d928
- update to version 0.39.0 * Support for Python 3.8 was added to Certbot and all of its components.
Markéta Machová2019-10-02 10:14:23 +00:00
57fee5c9ea
Accepting request 730174 from devel:languages:python:certbot
Ludwig Nussel
2019-09-13 12:59:25 +00:00
04e22d3439
- update to version 0.38.0 * Disable session tickets for Nginx users when appropriate.
Markéta Machová2019-09-11 12:39:30 +00:00
aa95620302
- update to version 0.37.2 * Follow updated Mozilla recommendations for Nginx ssl_protocols, ssl_ciphers, and ssl_prefer_server_ciphers * Stop disabling TLS session tickets in Nginx as it caused TLS failures on some systems.
Markéta Machová2019-08-26 10:58:03 +00:00
Dominique Leuenberger
Markéta Machová
Ana Guerrero
Steve Kowalik
Dirk Mueller
Danilo Spinella
Richard Brown
Ludwig Nussel
OBS User buildservice-autocommit