-
v4.0Release: v4.0e88e3ab3 · ·
*BREAKING CHANGES* * replace deprecated DNS library calls (requires dnspython >= 2.0) * needs python 3.9 to use the dictionary union operator * explicitly disable the DNS suffix search list Older versions of dnspython (<2.0) followed locally configured DNS suffix search list. Although, as the ACME server does not know this list, this feature could not be used before in practice. Normally, this breaking change should not impact users. I'd like to thank kinkie for the [pull request #7](https://github.com/Trim/acme-dns-tiny/pull/7) on Github which removed the deprecated DNS library calls. Fixes: * tools: acme_account_deactivate add missing timeout for one post request Other changes: * update gitlab domain name for adorsaz.ch * gitlab-ci: remove Strech build and adds Bookworm one * update code style * tests: config_factory sets explicit encoding and disable the "using-with" recommendation * gitlab-ci: coverage only on Debian stable and use yaml multi-line style for scripts * gitlab-ci: replace stages for Debian oldoldstable by testing
-
v3.0Release: v3.09e965c81 · ·
Breaking and behavior changes: * Automatically resolve zone name and authoritative name servers * A new configuration file is required due to this new functionality: * DNS section is fully optional * DNS section only contains `Timeout` and `NameServer` options * Now acme-dns-tiny uses by default the system name server to query DNS resources (you can specify other with the new `NameServer` option). * With the help of `SOA` and `NS` DNS resource records, `acme-dns-tiny` is able to automatically find the DNS authoritative server where to install ACME DNS-01 challenges. See [commit message](https://projects.adorsaz.ch/adrien/acme-dns-tiny/-/commit/540c3d72223a604766def58ee8d6b5215d6e07da) for more details. * Requests sent to ACME server and DNS server have a default timeout to 10 seconds * Before, acme-dns-tiny could hand forever waiting for a HTTP or DNS response * dnspython >= 1.16 is required due to this new functionality Improvements * use Python context manager to run `openssl` commands Continuous Integration: * add tests to keep coherent code style (linters for YAML and python files) * run `check` stage with Debian Bullseye * git default branch is now `main` instead of `master` -
v2.4Release: v2.494e76b7b · ·
Feature fixed on v2.4: * correctly retrieve account information when it was already registred (afb7e988) * when DNS Host configuration is an IP address, use it correctly as name server (2776348a) * improve code stability by following hints from [pyright](https://github.com/microsoft/pyright) (raises more explicit errors, fix function return type...) Continuous Integration: * Remove tests for Debian Jessie and add tests for Debian Bullseye (a745e655) * Validate all tests with the [pebble](https://github.com/letsencrypt/pebble) tiny ACME server Documentation: * Move documentation from wiki to [`/documentations`](./documentations) directory so we can always synchronize it with code -
v2.3Release: Maintenance release v2.384338d52 · ·
Maintenance release v2.3 Feature fixed on v2.3: * fix compatibility with dnspython 2.0 (#11) * fix issue when trying to apply DNS update on secondary server (thanks Sebastian Koechlin) * fix debug message when CNAME was not found * fix test chain assertion (a chain contains more than 1 certificate) Feature added: * skip already validated authorization challenge Continuous Integration improvement: * Debian Stretch tests were using Debian Jessie image * Enable Docker build uses [BUILDKIT](https://docs.docker.com/develop/develop-images/build_enhancements/) and the `overlay2` filesystem driver Other: * the .gitignore file has been simplified