DNSroboCert 3.1.6

Changed

• Update runtime dependencies (including cryptography 2.9)
• Fix the delegated_subdomain parameter in providers configuration that was not taken into account
  (@davidyuk #96)
• Fix providers configuration link in the documentation (@davidyuk #95)

DNSroboCert 3.1.5

Modified

• Ensure a certificate name does not have wildcard characters when migrating from legacy config
  (eg. example.com for domains [*.example.com, example.com] instead of *.example.com).

DNSroboCert 3.1.4

Modified

• Protect the auth hook from NXDOMAIN failures when checking if the TXT entry of a challenge
  has been propagated in the DNS zone.
• Improve logs during sub-command execution (flush the output)

DNSroboCert 3.1.3

Added

• acme.certs_permissions.user and acme.certs_permissions.group can know be defined as integer
  to set the uid or gid instead of the user name and group name owner of the certificates.

DNSroboCert 3.1.2

Modified

• More consistent output for sub-commands launched by DNSroboCert

DNSroboCert 3.1.1

Added

• Add the ttl parameter in the providers definition. It allows to control the TTL value in TXT entries
  inserted during the DNS-01 challenges. This value for environment variable LEXICON_TTL from legacy
  configuration is properly migrated.

DNSroboCert 3.1.0

Added

• Build multi-arch Docker image (amd64, i386, arm64, armv7, armv6, ppc64le and s390x),
  with the help of @patrickpissurno and @a16bitsysop.

Modified

• Use Alpine as base image again (3.11)
• Update Lexicon to 3.3.19 (improvments for SafeDNS and DigitalOcean providers)

DNSroboCert 3.0.2

Added

• Allow to define octal values of acme.dirs_mode and acme.files_mode as strings
  (eg "0755") in the YAML configuration file

Modified

• Improve the User Guide (@neejoh with #84)

DNSroboCert 3.0.1

Added

• Add Docker CLI

Modified

• Update Lexicon to 3.3.18 (fix Hetzner provider)

DNSroboCert 3.0.0

Added

• Complete refactoring of former adferrand/letsencrypt-dns into DNSroboCert. Docker image is now
  adferrand/dnsrobocer and is available in DockerHub. Standalone tool is installable through PyPI at
  https://pypi.org/project/dnsrobocert/.
• DNSroboCert does not use environment variables + domains.conf anymore. If you come from the
  adferrand/letsencrypt-dns Docker image, the corresponding YAML configuration file is dynamically
  generated at /etc/dnsrobocert/config.yml. Please see
  https://dnsrobocert.readthedocs.io/en/latest/miscellaneous.html#migration-from-docker-letsencrypt-dns
  for more details.
• Complete CI/CD flow, with unit/integration tests, code quality, type checking and automated deployment.
• New features (configurable with config.yml, not legacy configuration):
  • you can now define multiple DNS providers in one single instance of DNSroboCert
  • the custom deploy scripts and PFX exports are defined per certificate
  • force renew can be set for specific certificates

Modified

• Along with migration to DNSroboCert, all bash files are rewritten into Python.
• Certificate renewal is not handled automatically anymore by an external cron task, but by DNSroboCert directly.

Removed

• Configuration of certificate renewal frequency has been removed.