Markéta Machová
2d5aaa97f7
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:certbot/python-certbot?expand=0&rev=52
233 lines
11 KiB
Plaintext
233 lines
11 KiB
Plaintext
-------------------------------------------------------------------
|
|
Fri Jan 3 11:16:34 UTC 2020 - Marketa Calabkova <mcalabkova@suse.com>
|
|
|
|
- update to version 1.0.0 (boo#1160066)
|
|
* certbot-auto has deprecated support for systems using OpenSSL 1.0.1
|
|
that are not running on x86-64.
|
|
* Certbot's config_changes subcommand has been removed
|
|
* certbot.plugins.common.TLSSNI01 has been removed.
|
|
* The functions certbot.client.view_config_changes,
|
|
certbot.main.config_changes,
|
|
certbot.plugins.common.Installer.view_config_changes,
|
|
certbot.reverter.Reverter.view_config_changes, and
|
|
certbot.util.get_systemd_os_info have been removed
|
|
* Certbot's register --update-registration subcommand has been removed
|
|
* When possible, default to automatically configuring the webserver so all requests
|
|
redirect to secure HTTPS access. This is mostly relevant when running Certbot
|
|
in non-interactive mode. Previously, the default was to not redirect all requests.
|
|
|
|
-------------------------------------------------------------------
|
|
Thu Nov 14 12:19:12 UTC 2019 - Marketa Calabkova <mcalabkova@suse.com>
|
|
|
|
- update to version 0.40.1
|
|
* --server may now be combined with --dry-run.
|
|
* --dry-run now requests fresh authorizations every time, fixing
|
|
the issue where it was prone to falsely reporting success.
|
|
* The OS detection logic again uses distro library for Linux OSes
|
|
* certbot.plugins.common.TLSSNI01 has been deprecated and will be
|
|
removed in a future release.
|
|
* CLI flags --tls-sni-01-port and --tls-sni-01-address have been removed.
|
|
* The values tls-sni and tls-sni-01 for the --preferred-challenges
|
|
flag are no longer accepted.
|
|
* Removed the flags: --agree-dev-preview, --dialog, and --apache-init-script
|
|
|
|
-------------------------------------------------------------------
|
|
Thu Oct 17 11:20:38 UTC 2019 - Richard Brown <rbrown@suse.com>
|
|
|
|
- Remove obsolete Groups tag (fate#326485)
|
|
|
|
-------------------------------------------------------------------
|
|
Wed Oct 2 10:02:37 UTC 2019 - Marketa Calabkova <mcalabkova@suse.com>
|
|
|
|
- update to version 0.39.0
|
|
* Support for Python 3.8 was added to Certbot and all of its components.
|
|
* Don't send OCSP requests for expired certificates
|
|
|
|
-------------------------------------------------------------------
|
|
Wed Sep 11 12:29:03 UTC 2019 - Marketa Calabkova <mcalabkova@suse.com>
|
|
|
|
- update to version 0.38.0
|
|
* If Certbot fails to rollback your server configuration, the
|
|
error message links to the Let's Encrypt forum.
|
|
* Replace platform.linux_distribution with distro.linux_distribution
|
|
as a step towards Python 3.8 support in Certbot.
|
|
|
|
-------------------------------------------------------------------
|
|
Mon Aug 26 10:40:27 UTC 2019 - Marketa Calabkova <mcalabkova@suse.com>
|
|
|
|
- update to version 0.37.2
|
|
* nginx and apache fixes
|
|
|
|
-------------------------------------------------------------------
|
|
Wed Jul 24 12:27:15 UTC 2019 - Robert Frohl <rfrohl@suse.com>
|
|
|
|
- Updated Provides and Obsoletes on certbot to include the python2-certbot package
|
|
|
|
-------------------------------------------------------------------
|
|
Wed Jul 17 13:35:22 UTC 2019 - Marketa Calabkova <mcalabkova@suse.com>
|
|
|
|
- update to version 0.36.0 (bsc#1141928)
|
|
* Update the 'manage your account' help to be more generic.
|
|
* Certbot's config_changes subcommand has been deprecated and
|
|
will be removed in a future release.
|
|
* certbot config_changes no longer accepts a --num parameter.
|
|
* The functions certbot.plugins.common.Installer.view_config_changes
|
|
and certbot.reverter.Reverter.view_config_changes have been
|
|
deprecated and will be removed in a future release.
|
|
|
|
-------------------------------------------------------------------
|
|
Tue Jun 18 09:41:01 UTC 2019 - Marketa Calabkova <mcalabkova@suse.com>
|
|
|
|
- update to 0.35.1
|
|
* Renewal parameter webroot_path is always saved.
|
|
* Scripts in Certbot hook directories are no longer executed when
|
|
their filenames end in a tilde.
|
|
|
|
-------------------------------------------------------------------
|
|
Sat May 18 23:21:26 UTC 2019 - Dirk Mueller <dmueller@suse.com>
|
|
|
|
- update to 0.34.2:
|
|
* Apache plugin now tries to restart httpd on Fedora using systemctl if a
|
|
configuration test error is detected. This has to be done due to the way
|
|
Fedora now generates the self signed certificate files upon first
|
|
restart.
|
|
* Updated Certbot and its plugins to improve the handling of file system permissions
|
|
on Windows as a step towards adding proper Windows support to Certbot.
|
|
* Updated urllib3 to 1.24.2 in certbot-auto.
|
|
* Removed the fallback introduced with 0.32.0 in `acme` to retry a challenge response
|
|
with a `keyAuthorization` if sending the response without this field caused a
|
|
`malformed` error to be received from the ACME server.
|
|
* Linode DNS plugin now supports api keys created from their new panel
|
|
at [cloud.linode.com](https://cloud.linode.com)
|
|
* Adding a warning noting that future versions of Certbot will automatically configure the
|
|
webserver so that all requests redirect to secure HTTPS access. You can control this
|
|
behavior and disable this warning with the --redirect and --no-redirect flags.
|
|
* certbot-auto now prints warnings when run as root with insecure file system
|
|
permissions. If you see these messages, you should fix the problem by
|
|
following the instructions at
|
|
https://community.letsencrypt.org/t/certbot-auto-deployment-best-practices/91979/,
|
|
however, these warnings can be disabled as necessary with the flag
|
|
--no-permissions-check.
|
|
* `acme` module uses now a POST-as-GET request to retrieve the registration
|
|
from an ACME v2 server
|
|
* Convert the tsig algorithm specified in the certbot_dns_rfc2136 configuration file to
|
|
all uppercase letters before validating. This makes the value in the config case
|
|
insensitive.
|
|
|
|
-------------------------------------------------------------------
|
|
Fri May 3 12:20:54 UTC 2019 - Marketa Calabkova <mcalabkova@suse.com>
|
|
|
|
- Add migration script from old certbot to the new one (boo#1119619).
|
|
|
|
-------------------------------------------------------------------
|
|
Mon Mar 18 08:33:15 UTC 2019 - Marketa Calabkova <mcalabkova@suse.com>
|
|
|
|
- update to version 0.32.0
|
|
* If possible, Certbot uses built-in support for OCSP from recent
|
|
cryptography versions instead of the OpenSSL binary: as a
|
|
consequence Certbot does not need the OpenSSL binary to be
|
|
installed anymore if cryptography>=2.5 is installed.
|
|
* Certbot and its acme module now depend on josepy>=1.1.0.
|
|
* Apache plugin now respects CERTBOT_DOCS environment variable when
|
|
adding command line defaults.
|
|
* The running of manual plugin hooks is now always included in
|
|
Certbot's log output.
|
|
* Tests execution now relies on pytest.
|
|
* An ACME CA server may return a "Retry-After" HTTP header on
|
|
authorization polling, as specified in the ACME protocol, to
|
|
indicate when the next polling should occur. Certbot now reads
|
|
this header if set and respect its value.
|
|
* The acme module avoids sending the keyAuthorization field in
|
|
the JWS payload when responding to a challenge as the field is
|
|
not included in the current ACME protocol. To ease the migration
|
|
path for ACME CA servers, Certbot and its acme module will first
|
|
try the request without the keyAuthorization field but will
|
|
temporarily retry the request with the field included if a
|
|
malformed error is received. This fallback will be removed in
|
|
version 0.34.0.
|
|
|
|
-------------------------------------------------------------------
|
|
Thu Mar 14 10:13:31 UTC 2019 - Tomáš Chvátal <tchvatal@suse.com>
|
|
|
|
- Provide certbot namespace on py2 too to avoid migration conflict
|
|
|
|
-------------------------------------------------------------------
|
|
Fri Feb 8 10:32:10 UTC 2019 - Marketa Calabkova <mcalabkova@suse.com>
|
|
|
|
- update to version 0.31.0
|
|
* Avoid reprocessing challenges that are already validated when
|
|
a certificate is issued.
|
|
* Certbot's official Docker images are now based on Alpine Linux 3.9
|
|
rather than 3.7.
|
|
* Clarify behavior for deleting certs as part of revocation.
|
|
|
|
-------------------------------------------------------------------
|
|
Tue Jan 29 11:39:30 UTC 2019 - Tomáš Chvátal <tchvatal@suse.com>
|
|
|
|
- Update to 0.30.2:
|
|
* Update the version of setuptools pinned in certbot-auto to 40.6.3 to
|
|
solve installation problems on newer OSes.
|
|
* Always download the pinned version of pip in pipstrap to address breakages
|
|
* Rename old,default.conf to old-and-default.conf to address commas in filenames
|
|
breaking recent versions of pip.
|
|
* Add VIRTUALENV_NO_DOWNLOAD=1 to all calls to virtualenv to address breakages
|
|
from venv downloading the latest pip
|
|
* Added the `update_account` subcommand for account management commands.
|
|
|
|
-------------------------------------------------------------------
|
|
Sat Dec 15 06:34:38 UTC 2018 - Thomas Bechtold <tbechtold@suse.com>
|
|
|
|
- update to 0.29.1:
|
|
* The default work and log directories have been changed back
|
|
to /var/lib/letsencrypt and /var/log/letsencrypt respectively.
|
|
* Noninteractive renewals with `certbot renew` (those not started
|
|
from a terminal) now randomly sleep 1-480 seconds before beginning
|
|
work in order to spread out load spikes on the server side.
|
|
* Added External Account Binding support in cli and acme library.
|
|
Command line arguments --eab-kid and --eab-hmac-key added.
|
|
* Private key permissioning changes: Renewal preserves existing group mode
|
|
& gid of previous private key material. Private keys for new
|
|
lineages (i.e. new certs, not renewed) default to 0o600.
|
|
* Update code and dependencies to clean up Resource and Deprecation Warnings.
|
|
* Only depend on imgconverter extension for Sphinx >= 1.6
|
|
- update URL
|
|
|
|
-------------------------------------------------------------------
|
|
Fri Nov 30 17:51:34 UTC 2018 - Jason Craig <os-dev@jacraig.com>
|
|
|
|
- Add Requires: python-mock, it won't run without it
|
|
|
|
-------------------------------------------------------------------
|
|
Fri Nov 16 17:14:44 UTC 2018 - Marketa Calabkova <mcalabkova@suse.com>
|
|
|
|
- update to version 0.28.0
|
|
* revoke accepts --cert-name, and doesn't accept both --cert-name
|
|
and --cert-path
|
|
|
|
-------------------------------------------------------------------
|
|
Tue Oct 9 12:21:52 UTC 2018 - Tomáš Chvátal <tchvatal@suse.com>
|
|
|
|
- Do not conflict with Certbot as now we provide/obsolete it
|
|
|
|
-------------------------------------------------------------------
|
|
Wed Oct 3 10:02:34 UTC 2018 - Tomáš Chvátal <tchvatal@suse.com>
|
|
|
|
- Provide and obsolete certbot main package too to ensure we can
|
|
migrate to the new split setup directly
|
|
|
|
-------------------------------------------------------------------
|
|
Tue Sep 18 09:25:54 UTC 2018 - Tomáš Chvátal <tchvatal@suse.com>
|
|
|
|
- Conflict with certbot package to allow easy migration
|
|
|
|
-------------------------------------------------------------------
|
|
Fri Sep 14 07:19:01 UTC 2018 - Marketa Calabkova <mcalabkova@suse.com>
|
|
|
|
- update to version 0.27.1
|
|
* the documentation can be built using Sphinx 1.6+
|
|
|
|
-------------------------------------------------------------------
|
|
Tue Aug 28 11:32:26 UTC 2018 - tchvatal@suse.com
|
|
|
|
- Initial package, split from certbot blob
|