From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: <f.gleumes@proxmox.com> Received: from firstgate.proxmox.com (firstgate.proxmox.com [212.224.123.68]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by lists.proxmox.com (Postfix) with ESMTPS id 2DF2FC17ED for <pve-devel@lists.proxmox.com>; Tue, 16 Jan 2024 15:49:14 +0100 (CET) Received: from firstgate.proxmox.com (localhost [127.0.0.1]) by firstgate.proxmox.com (Proxmox) with ESMTP id 0D41E38676 for <pve-devel@lists.proxmox.com>; Tue, 16 Jan 2024 15:49:14 +0100 (CET) Received: from proxmox-new.maurer-it.com (proxmox-new.maurer-it.com [94.136.29.106]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by firstgate.proxmox.com (Proxmox) with ESMTPS for <pve-devel@lists.proxmox.com>; Tue, 16 Jan 2024 15:49:13 +0100 (CET) Received: from proxmox-new.maurer-it.com (localhost.localdomain [127.0.0.1]) by proxmox-new.maurer-it.com (Proxmox) with ESMTP id 3AC5D49183 for <pve-devel@lists.proxmox.com>; Tue, 16 Jan 2024 15:49:13 +0100 (CET) Message-ID: <78d597f8c83716882768eb95d482fa3c8b7cd72c.camel@proxmox.com> From: Folke Gleumes <f.gleumes@proxmox.com> To: pve-devel@lists.proxmox.com Date: Tue, 16 Jan 2024 15:49:12 +0100 In-Reply-To: <20240116143338.294260-1-f.gleumes@proxmox.com> References: <20240116143338.294260-1-f.gleumes@proxmox.com> Organization: Proxmox Server Solutions GmbH Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable User-Agent: Evolution 3.46.4-2 MIME-Version: 1.0 X-SPAM-LEVEL: Spam detection results: 0 AWL 0.015 Adjusted score from AWL reputation of From: address BAYES_00 -1.9 Bayes spam probability is 0 to 1% DMARC_MISSING 0.1 Missing DMARC policy KAM_DMARC_STATUS 0.01 Test Rule for DKIM or SPF Failure with Strict Alignment SPF_HELO_NONE 0.001 SPF: HELO does not publish an SPF Record SPF_PASS -0.001 SPF: sender matches SPF record T_SCC_BODY_TEXT_LINE -0.01 - Subject: Re: [pve-devel] [PATCH manager 0/2] fix #5093 add custom directory and eab to ui X-BeenThere: pve-devel@lists.proxmox.com X-Mailman-Version: 2.1.29 Precedence: list List-Id: Proxmox VE development discussion <pve-devel.lists.proxmox.com> List-Unsubscribe: <https://lists.proxmox.com/cgi-bin/mailman/options/pve-devel>, <mailto:pve-devel-request@lists.proxmox.com?subject=unsubscribe> List-Archive: <http://lists.proxmox.com/pipermail/pve-devel/> List-Post: <mailto:pve-devel@lists.proxmox.com> List-Help: <mailto:pve-devel-request@lists.proxmox.com?subject=help> List-Subscribe: <https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-devel>, <mailto:pve-devel-request@lists.proxmox.com?subject=subscribe> X-List-Received-Date: Tue, 16 Jan 2024 14:49:14 -0000 For testing, I have used pebble [0] in a separate lxc container. 1. Download and compile the project 2. Start pebble with the included eab config: pebble -c test/config/pebble-config-external-account-bindings.json 3. Import the certificates from the test/certs folder into the pve instance 4. Add the pebble to the /etc/hosts of your pve instance 5. Use https://pebble:14000/dir as the acme directory for testing, eab credentials can be found in the config used in step 2 [0] https://github.com/letsencrypt/pebble On Tue, 2024-01-16 at 15:33 +0100, Folke Gleumes wrote: > This patch series adds the option to set a custom directory for ACME > and > enables the user to use external account binding, which is required > by > some providers. >=20 > Folke Gleumes (2): > =C2=A0 fix #5093: webui: acme: custom directory option > =C2=A0 webui: acme: add eab fields >=20 > =C2=A0www/manager6/node/ACME.js | 168 ++++++++++++++++++++++++++++++-----= - > -- > =C2=A01 file changed, 135 insertions(+), 33 deletions(-) >=20