Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Serve TLS-Challenge certificate in first #3605

Merged
merged 1 commit into from
Jul 12, 2018
Merged

Serve TLS-Challenge certificate in first #3605

merged 1 commit into from
Jul 12, 2018

Conversation

nmengin
Copy link
Contributor

@nmengin nmengin commented Jul 12, 2018

What does this PR do?

The PR modifies the order in the getCertificate implementations if ACME certificates can be generated tahnks to TLS-ALPN challenge.

Motivation

Users can have a generic wildcard self-signed certificate and want to serve a Let's Encrypt certificate only for few specific subdomains.

In the original order, it was not possible to generate a ACME certificate, thanks to the TLS-ALPN challenge, for a domain which is already cheked by a provided wildcard domain certificate.

The new order checks if a temporary ACME certificate is enable for the requested domain before to check the others certifcates.

More

  • Added/updated tests

Additional Notes

Rename toml file in ACME E2E tests to be homogeneouse.

@traefiker traefiker added this to the 1.7 milestone Jul 12, 2018
ldez
ldez approved these changes Jul 12, 2018
View reviewed changes
Copy link
Contributor

@ldez ldez left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

dtomcej
dtomcej approved these changes Jul 12, 2018
View reviewed changes
Copy link
Contributor

@dtomcej dtomcej left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM
:shipit:

juliens
juliens approved these changes Jul 12, 2018
View reviewed changes
Copy link
Member

@juliens juliens left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@traefiker traefiker force-pushed the hotfix/tls-challenge-cert-in-first branch from 01d5ae8 to 7f19d4c Compare July 12, 2018 16:28
@traefiker traefiker merged commit 14b7152 into traefik:v1.7 Jul 12, 2018
@nmengin nmengin deleted the hotfix/tls-challenge-cert-in-first branch August 3, 2018 12:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dtomcej dtomcej dtomcej approved these changes

@ldez ldez ldez approved these changes

@juliens juliens juliens approved these changes

Assignees
No one assigned
Labels
area/acme kind/bug/fix a bug fix size/S
Projects
None yet
Milestone
1.7
Development

Successfully merging this pull request may close these issues.
5 participants
@nmengin @juliens @ldez @dtomcej @traefiker