mirror of
https://github.com/pomerium/pomerium.git
synced 2025-07-31 23:41:09 +02:00
7812c6985d
The `autocert_ca` and `autocert_email` options have been added to be able to configure CAs that support the ACME protocol as an alternative to Let's Encrypt. Fix ProtoBuf definition for additional autocert options Fix PR comments and add ACME EAB configuration Add configuration option for trusted CAs when talking ACME Fix linter issues copy edits render updated reference to docs Add test for autocert manager configuration Add tests for autocert configuration options Fix CI build issues Don't set empty acme.EAB struct if configuration not set Remove required email when setting custom CA When using a non-default CA it's no longer required to specify an email address. I required this before, because it seemed to cause an issue in which no certificate was issued. The root cause was something different, rendering the hard email requirement pointless. It's still beneficial to specify an email, though. I changed the text in the docs to explain that. Update generated docs Fix failing tests by recreation of a new ACMEManager The default ACMEManager object was reused in multiple tests, resulting in unexpected states when tests run in parallel. By using a new instance for every test, this is no longer an issue. |
||
|---|---|---|
| .. | ||
| envoyconfig | ||
| testdata | ||
| autocert.go | ||
| autocert_test.go | ||
| certs.go | ||
| certs_test.go | ||
| codec_type.go | ||
| config.go | ||
| config_source.go | ||
| config_source_test.go | ||
| constants.go | ||
| crypt.go | ||
| custom.go | ||
| custom_test.go | ||
| doc.go | ||
| helpers.go | ||
| helpers_test.go | ||
| http.go | ||
| http_test.go | ||
| log.go | ||
| metrics.go | ||
| metrics_test.go | ||
| options.go | ||
| options_test.go | ||
| policy.go | ||
| policy_ppl.go | ||
| policy_ppl_test.go | ||
| policy_test.go | ||
| trace.go | ||
| trace_test.go | ||
| validate.go | ||