about summary refs log tree commit diff stats
path: root/internal/server/tls.go
Commit message (Collapse)AuthorAgeLines
* Fork caddy-storage-redis and make certmagic-onlyAlan Pearce3 days-5/+2
|
* tls: change certmanager defaults instead of creating new configAlan Pearce3 days-33/+21
|
* Use errors.WithMessage in place of .WrapAlan Pearce5 days-6/+6
|
* tls: use only DNS01 challengesAlan Pearce6 days-4/+6
|
* Add support for connecting to redis via TLSAlan Pearce6 days-0/+4
|
* Use PowerDNS API instead of acme-dns (buggy)Alan Pearce6 days-14/+5
|
* provision wildcard certificate correctlyAlan Pearce2024-10-23-1/+7
|
* remove tls domain overrideAlan Pearce2024-07-11-1/+1
|
* fix dns01 challengeAlan Pearce2024-07-11-12/+16
|
* add wildcard domain redirect supportAlan Pearce2024-07-10-0/+23
|
* fix mismatched log output from certmagicAlan Pearce2024-07-03-2/+2
|
* redirect to same host even if it doesn't have a portAlan Pearce2024-07-03-6/+6
|
* fix HTTP->S redirects on standard portAlan Pearce2024-07-03-1/+6
|
* oopsAlan Pearce2024-07-03-0/+1
|
* make HTTP->S redirects use same host only for HSTSAlan Pearce2024-07-03-4/+24
|
* extract listenfd libraryAlan Pearce2024-07-02-1/+1
|
* fix inconsistent handling of IPv6 listen addressAlan Pearce2024-07-02-6/+1
|
* enable filtered debug logging via DEBUG="component.*"Alan Pearce2024-06-29-3/+4
|
* pass logger to certmagicAlan Pearce2024-06-29-0/+3
|
* set timeouts for secondary (http) serverAlan Pearce2024-06-29-23/+15
|
* change error packageAlan Pearce2024-06-29-1/+1
|
* rename go moduleAlan Pearce2024-06-29-2/+3
|
* fix certificate acquisition when listen sockets are passedAlan Pearce2024-06-29-18/+28
|
* tls: strip IPv6 brackets before enabling certmagicAlan Pearce2024-06-29-1/+6
|
* use socket passing also for TLSAlan Pearce2024-06-28-5/+5
|
* log configured HTTP/S ports instead of defaultsAlan Pearce2024-06-28-2/+2
|
* remove firewall warning on macOSAlan Pearce2024-06-27-0/+1
|
* avoid redirect chains (http -> https, host1 -> host2)Alan Pearce2024-06-27-14/+50
|
* require only ACME_CA for TLS in developmentAlan Pearce2024-06-27-5/+13
| | | | | It makes sense to add the CA root certificate to the system trust store so that user agents don't produce warnings
* enable TLS for local development (using caddy as acme server)Alan Pearce2024-06-26-18/+48
|
* set default TLS server nameAlan Pearce2024-06-26-0/+1
|
* build with ko instead of nixAlan Pearce2024-06-25-0/+2
|
* handle TLS in server with ACMEAlan Pearce2024-06-24-0/+47