Lucas Savva
982c5a1f0e
nixos/acme: Restructure module
...
- Use an acme user and group, allow group override only
- Use hashes to determine when certs actually need to regenerate
- Avoid running lego more than necessary
- Harden permissions
- Support "systemctl clean" for cert regeneration
- Support reuse of keys between some configuration changes
- Permissions fix services solves for previously root owned certs
- Add a note about multiple account creation and emails
- Migrate extraDomains to a list
- Deprecate user option
- Use minica for self-signed certs
- Rewrite all tests
I thought of a few more cases where things may go wrong,
and added tests to cover them. In particular, the web server
reload services were depending on the target - which stays alive,
meaning that the renewal timer wouldn't be triggering a reload
and old certs would stay on the web servers.
I encountered some problems ensuring that the reload took place
without accidently triggering it as part of the test. The sync
commands I added ended up being essential and I'm not sure why,
it seems like either node.succeed ends too early or there's an
oddity of the vm's filesystem I'm not aware of.
- Fix duplicate systemd rules on reload services
Since useACMEHost is not unique to every vhost, if one cert
was reused many times it would create duplicate entries in
${server}-config-reload.service for wants, before and
ConditionPathExists
2020-09-02 19:22:43 +01:00
Mario Rodas
f6d71ecb8a
kbs2: 0.1.3 -> 0.1.4
2020-08-30 11:14:15 -07:00
Daniël de Kok
d6d64dee97
Merge pull request #96576 from SuperSandro2000/rustscan
...
rustscan: init at 1.8.0
2020-08-29 19:03:42 +02:00
Sandro Jäckel
50f728ece3
rustscan: init at 1.8.0
2020-08-29 17:34:49 +02:00
Frederik Rietdijk
7b56d26ae3
Merge master into staging-next
2020-08-29 13:30:25 +02:00
worldofpeace
77fd145f40
Merge pull request #96506 from equirosa/gopass
...
gopass: 1.9.2 -> 1.10.1
2020-08-28 05:30:50 -04:00
Frederik Rietdijk
efb45f7638
Merge master into staging-next
2020-08-28 09:54:31 +02:00
Mario Rodas
b3ae6aac42
Merge pull request #96224 from marsam/update-gopass
...
gopass: 1.9.2 -> 1.10.0
2020-08-27 18:28:57 -05:00
Eduardo Quiros
3416c08939
gopass: 1.9.2 -> 1.10.1
2020-08-27 17:16:07 -06:00
Daniël de Kok
5f8d0e4d75
Merge pull request #96301 from danieldk/1password-gui-0.8.3-1
...
_1password-gui: 0.8.2-1 -> 0.8.3-1
2020-08-27 14:21:05 +02:00
Frederik Rietdijk
081bd762e5
Merge staging-next into staging
2020-08-26 08:43:29 +02:00
Daniël de Kok
d91d9494ff
_1password-gui: 0.8.2-1 -> 0.8.3-1
...
Changes:
https://discussions.agilebits.com/discussion/115413/
2020-08-25 20:33:03 +02:00
Daniël de Kok
421572ac2e
_1password-gui: add update script
2020-08-25 20:27:34 +02:00
Florian Klink
40d2968ebf
Merge pull request #94354 from flokli/systemd-246
...
systemd: 245.6 -> 246
2020-08-24 12:42:24 +02:00
Frederik Rietdijk
0a874ff2a6
Merge master into staging-next
2020-08-24 11:50:58 +02:00
Mario Rodas
7b33e80238
vault-bin: 1.3.0 -> 1.5.2
2020-08-24 04:20:00 -05:00
Mario Rodas
c2fe501594
vault: 1.5.0 -> 1.5.2
2020-08-24 04:20:00 -05:00
Mario Rodas
460161a99b
gopass: 1.9.2 -> 1.10.1
...
https://github.com/gopasspw/gopass/releases/tag/v1.10.0
https://github.com/gopasspw/gopass/releases/tag/v1.10.1
2020-08-24 04:20:00 +00:00
Silvan Mosberger
ba1088c4cf
Merge pull request #78483 from fishi0x01/fishi0x01/creddump
...
creddump: init at 0.3
2020-08-23 22:10:38 +02:00
Silvan Mosberger
6be340c56e
Merge pull request #96061 from danieldk/1password-0.8.1-1
...
_1password-gui: 0.8.0 -> 0.8.2-1
2020-08-23 21:49:57 +02:00
Silvan Mosberger
4abb13c9b2
Merge pull request #94093 from r-ryantm/auto-update/ibm-sw-tpm2
...
ibm-sw-tpm2: 1628 -> 1637
2020-08-23 18:50:11 +02:00
Daniël de Kok
8623f35f79
_1password-gui: 0.8.0 -> 0.8.2-1
2020-08-23 08:50:06 +02:00
Jan Tojnar
91104b5417
Merge branch 'master' into staging-next
2020-08-23 02:00:50 +02:00
Lassulus
dd2ecd0712
Merge pull request #89729 from JJJollyjim/bitwarden-rs-test
...
nixos/bitwarden_rs: add test
2020-08-22 23:23:55 +02:00
Jamie McClymont
f5f2d89fb7
nixos/bitwarden_rs: add test
2020-08-23 07:29:42 +12:00
Mario Rodas
2dfcad8be4
Merge pull request #95962 from r-ryantm/auto-update/doppler
...
doppler: 3.9.1 -> 3.10.1
2020-08-22 13:11:53 -05:00
R. RyanTM
6c5ded0652
doppler: 3.9.1 -> 3.10.1
2020-08-22 05:50:45 +00:00
zowoq
7c93f85b7a
genpass: fix darwin build
2020-08-19 11:17:49 +10:00
Frederik Rietdijk
4cf394ea3f
Merge master into staging-next
2020-08-18 17:55:04 +02:00
Frederik Rietdijk
0ac85bc455
Merge master into staging-next
2020-08-17 14:54:39 +02:00
ajs124
44a8c33eba
john: ship internal perl modules
2020-08-17 13:11:43 +02:00
leenaars
49f6cbaaa9
softhsm: 2.5.0 -> 2.6.1 ( #95594 )
2020-08-17 08:31:10 +00:00
zowoq
473536e3b5
buildRustPackage: remove platform.all from packages
2020-08-16 12:48:18 +10:00
zowoq
a83a88db05
buildGoPackage: remove platform.all from packages
2020-08-15 19:34:47 -07:00
zowoq
42313b92bc
buildGoModule: remove platform.all from packages
2020-08-15 19:34:47 -07:00
Alvar Penning
0a53c6b565
maintainers: rename geistesk to oxzi
...
For reasons I have renamed my GitHub account and would like to include
this name change here.
2020-08-15 16:03:46 +02:00
Frederik Rietdijk
cfe6081cee
Merge staging-next into staging
2020-08-15 09:12:42 +02:00
R. RyanTM
47e499f7a4
rhash: 1.3.9 -> 1.4.0
2020-08-15 08:52:15 +02:00
Vladyslav M
e155a01001
Merge pull request #95442 from doronbehar/pkg/sequoia
...
sequoia: 0.17.0 -> 0.18.0
2020-08-14 23:48:12 +03:00
Doron Behar
3862817d87
sequoia: 0.17.0 -> 0.18.0
2020-08-14 20:26:05 +03:00
Jan Tojnar
afe22f645a
Merge branch 'staging-next' into staging
2020-08-13 21:59:15 +02:00
Florian Klink
ee483145d0
keybase: use lib.getLib udev instead of udev.lib
...
This will pick the `lib` output if it exists, otherwise default to `out`.
2020-08-13 20:51:42 +02:00
Florian Klink
cf55e8762e
bitwarden: use lib.getLib udev instead of udev.lib
...
This will pick the `lib` output if it exists, otherwise default to `out`.
2020-08-13 20:51:42 +02:00
Florian Klink
135158c8c6
encryptr: use lib.getLib systemd instead of systemd.lib
...
This will pick the `lib` output if it exists, otherwise default to `out`.
2020-08-13 20:51:41 +02:00
Martin Weinelt
7e2d70f449
Merge pull request #94694 from mweinelt/ssh-audit
...
ssh-audit: 1.7.0 -> 2.2.0
2020-08-13 14:45:55 +02:00
Martin Weinelt
4a966b35c1
ssh-audit: 1.7.0 -> 2.2.0
...
Fixes : #94618
2020-08-13 14:34:24 +02:00
Frederik Rietdijk
7e189c56a1
Merge staging-next into staging
2020-08-13 08:52:48 +02:00
Daniël de Kok
f1b54d95bd
Merge pull request #95302 from r-ryantm/auto-update/bitwarden
...
bitwarden: 1.19.0 -> 1.20.1
2020-08-13 08:12:33 +02:00
R. RyanTM
06cc849acb
bitwarden: 1.19.0 -> 1.20.1
2020-08-13 03:47:30 +00:00
Timothy Stott
ba7c0893d4
treewide: remove obsolete attribute goPackagePath in buildGoModule derivations ( #95092 )
...
The buildGoModule infrastructure does not make use of goPackagePath it is a residue from buildGoPackage.
2020-08-11 21:04:55 +00:00