caddy/modules/caddytls
Matthew Holt b6686a54d8
httpcaddyfile: Improve AP logic with OnDemand
We have users that have site blocks like *.*.tld with on-demand TLS
enabled. While *.*.tld does not qualify for a publicly-trusted cert due
to its wildcards, On-Demand TLS does not actually obtain a cert with
those wildcards, since it uses the actual hostname on the handshake.

This improves on that logic, but I am still not 100% satisfied with the
result since I think we need to also check if another site block is more
specific, like foo.example.tld, which might not have on-demand TLS
enabled, and make sure an automation policy gets created before the
more general policy with on-demand...
2020-10-22 12:40:23 -06:00
..
distributedstek go.mod: Update dependencies 2020-06-01 09:31:08 -06:00
standardstek all: Recover from panics in goroutines 2020-05-12 11:36:20 -06:00
acmeissuer.go caddytls: Fix resolvers option of acme issuer (Caddyfile) 2020-09-09 10:21:59 -06:00
automation.go caddytls: Configure custom DNS resolvers for DNS challenge (close #2476) 2020-08-21 20:30:14 -06:00
certselection.go caddytls: Encode big.Int as string with JSON 2020-04-02 09:43:33 -06:00
connpolicy.go caddytls: Replace lego with acmez (#3621) 2020-07-30 15:18:14 -06:00
fileloader.go chore: make the linter happier (#3245) 2020-04-08 15:31:51 -06:00
folderloader.go v2: Module documentation; refactor LoadModule(); new caddy struct tags (#2924) 2019-12-10 13:36:46 -07:00
internalissuer.go go.mod: Use v0.15(.1) of smallstep libs 2020-08-20 19:28:25 -06:00
matchers.go caddytls: Match automation policies by wildcard subjects too 2020-03-26 14:01:38 -06:00
matchers_test.go caddytls: Support wildcard matching in ServerName conn policy matcher 2020-03-20 15:51:37 -06:00
pemloader.go chore: make the linter happier (#3245) 2020-04-08 15:31:51 -06:00
sessiontickets.go all: Recover from panics in goroutines 2020-05-12 11:36:20 -06:00
tls.go httpcaddyfile: Improve AP logic with OnDemand 2020-10-22 12:40:23 -06:00
values.go caddytls: Update cipher suite names and curve names 2020-04-01 14:09:29 -06:00
zerosslissuer.go caddytls: Add support for ZeroSSL; add Caddyfile support for issuers (#3633) 2020-08-11 08:58:06 -06:00