From 0240a3f3d9bd8688ee630ebc6110c78f3a84e953 Mon Sep 17 00:00:00 2001 From: Alan Pearce Date: Wed, 27 Nov 2024 23:39:02 +0100 Subject: tls: use only DNS01 challenges --- internal/server/tls.go | 10 ++++++---- 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/internal/server/tls.go b/internal/server/tls.go index 0fb6c48..2bb5ce4 100644 --- a/internal/server/tls.go +++ b/internal/server/tls.go @@ -83,10 +83,12 @@ func (s *Server) serveTLS() (err error) { } issuer = certmagic.NewACMEIssuer(cfg, certmagic.ACMEIssuer{ - CA: certmagic.LetsEncryptProductionCA, - Email: s.config.Email, - Agreed: true, - Logger: certmagic.Default.Logger, + CA: certmagic.LetsEncryptProductionCA, + Email: s.config.Email, + Agreed: true, + Logger: certmagic.Default.Logger, + DisableHTTPChallenge: true, + DisableTLSALPNChallenge: true, DNS01Solver: &certmagic.DNS01Solver{ DNSManager: certmagic.DNSManager{ DNSProvider: pdns, -- cgit 1.4.1