From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from firstgate.proxmox.com (firstgate.proxmox.com [212.224.123.68]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by lists.proxmox.com (Postfix) with ESMTPS id 0431A725B8 for ; Mon, 12 Apr 2021 21:28:49 +0200 (CEST) Received: from firstgate.proxmox.com (localhost [127.0.0.1]) by firstgate.proxmox.com (Proxmox) with ESMTP id B81B022B5D for ; Mon, 12 Apr 2021 21:28:48 +0200 (CEST) Received: from proxmox-new.maurer-it.com (proxmox-new.maurer-it.com [212.186.127.180]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by firstgate.proxmox.com (Proxmox) with ESMTPS id C7A1222B36 for ; Mon, 12 Apr 2021 21:28:46 +0200 (CEST) Received: from proxmox-new.maurer-it.com (localhost.localdomain [127.0.0.1]) by proxmox-new.maurer-it.com (Proxmox) with ESMTP id 9140345A6C for ; Mon, 12 Apr 2021 21:28:46 +0200 (CEST) From: Stoiko Ivanov To: pmg-devel@lists.proxmox.com Date: Mon, 12 Apr 2021 21:28:30 +0200 Message-Id: <20210412192833.21988-1-s.ivanov@proxmox.com> X-Mailer: git-send-email 2.20.1 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-SPAM-LEVEL: Spam detection results: 0 AWL 0.059 Adjusted score from AWL reputation of From: address KAM_DMARC_STATUS 0.01 Test Rule for DKIM or SPF Failure with Strict Alignment RCVD_IN_DNSWL_MED -2.3 Sender listed at https://www.dnswl.org/, medium trust SPF_HELO_NONE 0.001 SPF: HELO does not publish an SPF Record SPF_PASS -0.001 SPF: sender matches SPF record Subject: [pmg-devel] [PATCH pmg-api/pmg-docs/proxmox-widget-toolkit v2 0/1] allow wildcard DNS-names for ACME X-BeenThere: pmg-devel@lists.proxmox.com X-Mailman-Version: 2.1.29 Precedence: list List-Id: Proxmox Mail Gateway development discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 12 Apr 2021 19:28:49 -0000 v1->v2: * reaad up on the requirements and infered from [0], a few HOWTOs and the response from the LE staging directory that: ``` Orders that contain both a base domain and its wildcard equivalent (...) are valid. ``` means that only such orders are valid (hence the requirement for the base name in addition to the wildcard name * added a short stanza to pmg-docs describing the requirements * added a patch for pwt to allow '*.' as prefix for domains in ACMEDomains [0] https://community.letsencrypt.org/t/acme-v2-production-environment-wildcards/55578 pmg-api: Stoiko Ivanov (1): acme: allow wildcard domain entries src/PMG/CertHelpers.pm | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) pmg-docs: Stoiko Ivanov (1): certs: add wildcard certificate support pmg-ssl-certificate.adoc | 17 +++++++++++++++++ 1 file changed, 17 insertions(+) proxmox-widget-toolkit: Stoiko Ivanov (1): acme: allow wildcards as domain src/Toolkit.js | 5 +++++ src/Utils.js | 1 + src/window/ACMEDomains.js | 2 +- 3 files changed, 7 insertions(+), 1 deletion(-) -- 2.20.1