ACMEd v0.16.0

Added

• The pkcs9_email_address, postal_address and postal_code subject
  attributes has been added.

Changed

• The friendly_name and pseudonym subject attributes has been removed.
• The street_address subject attribute has been renamed street.

ACMEd v0.15.0

Added

• The names of both the certificate file and the associated private key can now
  be configured.

Fixed

• Configuration files cannot be loaded more than one time, which prevents
  infinite recursion.

Changed

• Certificates are now allowed to share the same name if their respective key
  type is different.

ACMEd v0.14.0

Added

• Add proxy support through the HTTP_PROXY, HTTPS_PROXY and NO_PROXY
  environment variables.
• Allow to specify a unique name for each certificate.

Changed

• The minimal required Rust version is 1.42.0.

ACMEd v0.13.0

Added

• In the configuration, root_certificates has been added to the global and
  endpoint sections as an array of strings representing the path to root
  certificate files.
• At compilation, it is now possible to statically link OpenSSL using the
  openssl_vendored feature.
• In the Makefile, it is now possible to specify which target triple to build
  for.

ACMEd v0.12.0

Added

• Some subject attributes can now be specified.
• Support for NIST P-521 certificates and account keys.

Fixed

• Support for Let's Encrypt non-standard account creation object.

ACMEd v0.11.0

Added

• The contacts account configuration field has been added.
• External account binding.

Changed

• The email account configuration field has been removed. In replacement, use
  the contacts field.
• Accounts now have their own hooks and environment.
• Accounts are now stored in a single binary file.

Fixed

• ACMEd can now build on platforms with a time_t not defined as an i64.
• The Makefile is now fully works on FreeBSD.

ACMEd v0.10.0

Added

• The account key type and signature algorithm can now be specified in the
  configuration using the key_type and signature_algorithm parameters.
• The delay to renew a certificate before its expiration date can be specified
  in the configuration using the renew_delay parameter at either the
  certificate, endpoint and global level.
• It is now possible to specify IP identifiers (RFC 8738) using the ip
  parameter instead of the dns one.
• The hook templates of type challenge-* have a new identifier_tls_alpn
  field which contains, if available, the identifier in a form that is suitable
  to the TLS ALPN challenge.
• Globing is now supported for configuration files inclusion.
• The CSR's digest algorithm can now be specified using the csr_digest
  parameter.

Changed

• In the certificate configuration, the domains field has been renamed
  identifiers.
• The algorithm certificate configuration field has been renamed key_type.
• The algorithm hook template variable has been renamed key_type.
• The domain hook template variable has been renamed identifier.
• The default hooks have been updated.

Fixed

• The Makefile now works on FreeBSD. It should also work on other BSD although
  it has not been tested.

ACMEd v0.9.0

Added

• System users and groups can now be specified by name in addition to uid/gid.

Changed

• The HTTP(S) part is now handled by attohttpc instead of reqwest.

Fixed

• In tacd, the --acme-ext-file parameter is now in conflict with acme-ext
  instead of itself.

ACMEd v0.8.0

Changed

• The HTTP(S) part is now handled by reqwest instead of http_req.

Fixed

• make install now work with the busybox toolchain.

ACMEd v0.7.0

Added

• Wildcard certificates are now supported. In the file name, the * is
  replaced by _.
• Internationalized domain names are now supported.

Changed

• The PID file is now always written whether or not ACMEd is running in the
  foreground. Previously, it was written only when running in the background.

Fixed

• In the directory, the externalAccountRequired field is now a boolean
  instead of a string.