sovereign

Autor	SHA1	Mensagem	Data
Thomas Buck	04ba7ad539	Added Fathom statistics tracker to blog task	5 anos atrás
Thomas Buck	c41cd737fd	Support multiple domains for letsencrypt	5 anos atrás
Thomas Buck	472dd068c2	Remove unneeded testing / vagrant stuff.	5 anos atrás
Thomas Buck	03f37267df	Remove cgit/gitolite git repo hosting	5 anos atrás
Mike Ashley	fc023dfc31	Clean up merge Clean up some artifacts from the merge to match the `jessie` branch. Keep the changes on master made with commits bfe6fe84 and e229c551.	8 anos atrás
Dosenpfand	9697cbe6b3	Silence letsencrypt cron output unless there is an error	8 anos atrás
Tomas Bedrich	899f527ca3	Updated LE renewal hook system	8 anos atrás
Tomas Bedrich	9786230808	Changed LE-renew cron frequency	8 anos atrás
Tomas Bedrich	e08acd2deb	Simplified LE renew script	8 anos atrás
Carl Meyer	579afa68d3	Add comment into letsencrypt-gencert script clarifying why we stop Apache.	8 anos atrás
Carl Meyer	0abf92734e	Don't stop Apache until we have to; start it again right after.	8 anos atrás
Carl Meyer	a636a43948	Don't try to execute any non-executable file in LE postrenew dir.	8 anos atrás
Carl Meyer	c3c2cbf096	Don't bounce Apache unless we actually need to.	8 anos atrás
Carl Meyer	e8796ecd28	Idempotent and independent post-certificate-renewal tasks.	8 anos atrás
nodiscc	d876c87e21	bash syntax cleanup as per discussion in https://github.com/sovereign/sovereign/pull/504	8 anos atrás
Mike Ashley	3d4987c4e2	Use a more descriptive name for cert generation script	8 anos atrás
Mike Ashley	bc5bfa4b21	Determine registered subdomains at deploy-time for LE	8 anos atrás
Mike Ashley	86048ee397	Update prosody to use LE certs directly Don't copy the LE certificates. Instead use the ssl-cert group to manage access to the LE certificates directly. See https://github.com/letsencrypt/letsencrypt/issues/1425 for a request to have the LE client do this itself.	8 anos atrás
Mike Ashley	1746afcc3a	Arrange automated tests to not use Let's Encrypt	9 anos atrás
Mike Ashley	8f1b6a9ed8	Arrange for services to restart on cert renewal	8 anos atrás
Mike Ashley	8e1d473027	Use Let's Encrypt for generating site certificates This method uses Subjective Alternative Names (SANs) to get one certificate for all the subdomains that Sovereign employs, whether or not the user configured their site with the roles.	9 anos atrás
Mike Ashley	7f46129a4c	Remove use of wildcard certificate	9 anos atrás
Mike Ashley	d3abc02f84	Clean up Apache SSL configuration Avoid using the Include directive. Move most of the SSL configuration to the global configuration and leave enabling the SSL engine to each virtual host that wants to use it.	8 anos atrás
Dan Milon	2fb7cfa7c9	Add SSL stapling cache for apache Fixes #406	9 anos atrás
Dan Milon	34f3a483aa	Add SSL stapling cache for apache Fixes #406	9 anos atrás
Luke Cyca	08d6827755	New vagrant-based development environment	11 anos atrás
Allen Riddell	88705bb7fa	Replace ferm with ufw	11 anos atrás
Alex Payne	a9cabad947	Update etc_ferm_ferm.conf	11 anos atrás
Allen Riddell	580e3ef5c1	Don't open unused ports Sovereign does not currently use jabber/xmpp or insecure smtp.	11 anos atrás
Alex Payne	f27442b678	move tarsnap to its own role	11 anos atrás
Alex Payne	080d38986c	first commit	11 anos atrás

32 Commits (4ab56bdf6ee22b1b77dceb831a96035f726267fc)