Port details |
- acme.sh ACME protocol client written in shell
- 3.0.7_2 security =11 3.0.7_1Version of this port present on the latest quarterly branch.
- Maintainer: dvl@FreeBSD.org
- Port Added: 2017-05-20 02:27:55
- Last Update: 2024-08-19 00:18:39
- Commit Hash: a38bf99
- People watching this port, also watch:: curl, rsync, git, pkg, tmux
- License: GPLv3+
- WWW:
- https://github.com/Neilpang/acme.sh/
- Description:
- ACME protocol client written in shell
- Full ACME protocol implementation.
- Support ACME v1 and ACME v2.
- Support ACME v2 wildcard certs.
- Simple, powerful and very easy to use. You only need 3 minutes to learn it.
- Bash, dash and sh compatible.
- Simplest shell script for Let's Encrypt free certificate client.
- Purely written in Shell with no dependencies on python or the official Let's
Encrypt client.
- Just one script to issue, renew and install your certificates automatically.
- DOES NOT require root/sudoer access.
- Docker friendly.
- IPv6 support.
- ¦ ¦ ¦ ¦
- Manual pages:
- FreshPorts has no man page information for this port.
- pkg-plist: as obtained via:
make generate-plist - Dependency lines:
-
- acme.sh>0:security/acme.sh
- To install the port:
- cd /usr/ports/security/acme.sh/ && make install clean
- To add the package, run one of these commands:
- pkg install security/acme.sh
- pkg install acme.sh
NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.- PKGNAME: acme.sh
- Flavors: there is no flavor information for this port.
- distinfo:
- TIMESTAMP = 1696606513
SHA256 (acmesh-official-acme.sh-3.0.7_GH0.tar.gz) = abd446d6bd45d0b44dca1dcbd931348797a3f82d1ed6fb171472eaf851a8d849
SIZE (acmesh-official-acme.sh-3.0.7_GH0.tar.gz) = 284269
Packages (timestamps in pop-ups are UTC):
- Dependencies
- NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.
- Runtime dependencies:
-
- curl : ftp/curl
- socat>0 : net/socat
- There are no ports dependent upon this port
Configuration Options:
- ===> The following configuration options are available for acme.sh-3.0.7_2:
BINDTOOLS=off: Depend on bind-tools for nsupdate
DOCS=on: Build and/or install documentation
EXAMPLES=on: Build and/or install examples
IDN=off: International Domain Names support
STANDALONE=on: Standalone mode requires SOCAT
====> Options available for the single HTTP: you have to select exactly one of them
CURL=on: Depend on cURL for HTTP(S) queries
WGET=off: Depend on Wget for HTTP(S) queries
===> Use 'make config' to modify these settings
- Options name:
- security_acme.sh
- USES:
- shebangfix
- pkg-message:
- For install:
- This script will create the following directories if they do not exist:
~acme/.acme.sh
~acme/certs
The script will also install ~acme/.acme.sh/account.conf.sample which has
sane defaults. Copy this to ~acme/.acme.sh/account.conf and edit contents
to suit.
If you have EXAMPLES on:
* In the /usr/local/share/examples/acme.sh directory, you can find the dnsapi
scripts which will be useful if you decide to use dns-01 challenges. Also
included are the deploy scripts.
* A newsyslog.conf sample file is installed at
/usr/local/etc/newsyslog.conf.d/acme.sh.conf - you must modify it by
at least uncommenting the line.
* If you run `newsyslog -NC` it will create the required logfiles.
* Please review /usr/local/share/examples/acme.sh/acme.sh-cron.d - instructions are
contained in that file.
- If upgrading
- In versions < 3.0.5_1, sample newsyslog files were installed to
/usr/local/etc/newsyslog.d/acme.sh
Now they are installed to:
/usr/local/etc/newsyslog.conf.d/acme.sh.conf
You may wish to delete the old files/directory and edit the new files to
enable the log rotation. Instructions contained within.
- Master Sites:
|
Commit History - (may be incomplete: for full details, see links to repositories near top of page) |
Commit | Credits | Log message |
3.0.7_2 19 Aug 2024 00:18:39 |
Dan Langille (dvl) Author: Siva Mahadevan |
security/acme.sh: fix 'pkg -r' installation
PR: 280916 |
3.0.7_1 08 Oct 2023 12:25:19 |
Dan Langille (dvl) |
security/acme.sh: fix post-install script
The install script contained a syntax error which caused the log file
to not be created.
While here:
* rename script from pkg-install to pkg-post-install
* include another crontab example which provides additional contet to
logging.
PR: 274348 |
3.0.7 06 Oct 2023 15:43:33 |
Dan Langille (dvl) |
security/acme.sh: Update to 3.0.7
re: https://github.com/acmesh-official/acme.sh/releases/tag/3.0.7
Thanks to Ken for telling me about this update. |
3.0.6_1 30 Jul 2023 19:59:00 |
Dan Langille (dvl) |
security/acme.sh: create the log file
If the log file does not exist on pkg-install, create it with the
expected permissions
PR: 264789 |
3.0.6 09 Jun 2023 18:21:40 |
Dan Langille (dvl) |
security/acme.sh: Fix remote exec issue
re: https://github.com/acmesh-official/acme.sh/releases/tag/3.0.6 |
3.0.5_1 01 Apr 2023 13:55:35 |
Dan Langille (dvl) |
security/acme.sh: Fix up some install issues
Don't install cronjob to /usr/local/etc/cron.d/
There is no concept of sample files in this directory. Everything is active.
Instead, install to /usr/local/share/examples/acme.sh and let the user
copy it over.
In the cronjob itself, specify the acme user. This was previously omitted
and the job would not run.
Install the sample newsyslog file to /usr/local/etc/newsyslog.conf.d - this
was installing to /usr/local/etc/newsyslog.d/acme.sh
Add an update cluse to pkg-message mentioning the newsyslog issue.
None of these changes should break existing installs. |
3.0.5 23 Nov 2022 18:31:14 |
Dan Langille (dvl) |
security/acme.sh: Update to 3.0.5
re: https://github.com/acmesh-official/acme.sh/releases/tag/v3.0.5
While here, change from Neilpang to acmesh-official since it redirects. |
3.0.4_2 12 Oct 2022 13:49:13 |
Dan Langille (dvl) |
security/acme.sh: Move cron example to EXAMPLESDIR
Instead of installing the sample crontab to etc/cron.d, install it to
EXAMPLESDIR
etc/cron.d/acme.sh will still be installed (if not present) but now
contains no active lines and more complete instructions.
Both the cron the newsyslog examples are only installed if the EXAMPLES
config option is ON (default).
Reported by: bapt |
3.0.4_1 11 Oct 2022 20:04:23 |
Dan Langille (dvl) |
security/acme.sh: Change crontab and add newsyslog
This update may break your install if you were using a symlink to
%%EXAMPLESDIR%%/acme.sh.conf - that file is no longer installed. Instead,
a log rotation configuration is now installed to etc/cron.d/acme.sh.sample
you should modify etc/cron.d/acme.sh to needs.
The port now installs a log rotation file to etc/newsyslog.d/acme.sh.sample
and you you should update etc/newsyslog.d/acme.sh to suit your needs.
This file has long been part of the port, but was never installed.
Neither the log rotation nor the crontab are active until you remove the
comments.
While here, several portclippy updates
Reported by: marck |
07 Sep 2022 21:58:51 |
Stefan Eßer (se) |
Remove WWW entries moved into port Makefiles
Commit b7f05445c00f has added WWW entries to port Makefiles based on
WWW: lines in pkg-descr files.
This commit removes the WWW: lines of moved-over URLs from these
pkg-descr files.
Approved by: portmgr (tcberner) |
3.0.4 07 Sep 2022 21:10:59 |
Stefan Eßer (se) |
Add WWW entries to port Makefiles
It has been common practice to have one or more URLs at the end of the
ports' pkg-descr files, one per line and prefixed with "WWW:". These
URLs should point at a project website or other relevant resources.
Access to these URLs required processing of the pkg-descr files, and
they have often become stale over time. If more than one such URL was
present in a pkg-descr file, only the first one was tarnsfered into
the port INDEX, but for many ports only the last line did contain the
port specific URL to further information.
There have been several proposals to make a project URL available as
a macro in the ports' Makefiles, over time.
(Only the first 15 lines of the commit message are shown above ) |
3.0.4 08 May 2022 22:00:35 |
Dan Langille (dvl) |
security/acme.sh: Update to 3.0.4
Now supports:
* Google Public CA
* NotBefore and NotAfter fields
re: https://github.com/acmesh-official/acme.sh/releases/tag/3.0.4
https://github.com/acmesh-official/acme.sh/releases/tag/3.0.3 |
3.0.2 07 Feb 2022 23:08:31 |
Dan Langille (dvl) |
security/acme.sh: Update to 3.0.2
re: https://github.com/acmesh-official/acme.sh/releases/tag/3.0.2 |
3.0.1 03 Oct 2021 19:04:14 |
Dan Langille (dvl) |
security/acme.sh: Update to 3.0.1
More updates for DST root expiring issues
re https://github.com/acmesh-official/acme.sh/releases/tag/3.0.1 |
3.0.0 01 Aug 2021 16:22:40 |
Dan Langille (dvl) |
security/acme.sh: update to 3.0.0
Support multiple CAs
* Zerossl.com is set a default CA now:
https://github.com/acmesh-official/acme.sh/wiki/Change-default-CA-to-ZeroSSL
* SSL.com is supported now:
https://github.com/acmesh-official/acme.sh/wiki/SSL.com-CA
* Add more retry logic for unstable network connections.
* More dns apis are aded.
* Bug fixes. |
2.9.0_1 18 Jun 2021 18:32:22 |
Dan Langille (dvl) |
security/acme.sh: ensure sed -i works in examples/acme.sh/dnsapi/dns_nsd.sh
PR: 256664
Reported by: Freddy DISSAUX <dsx@bsdsx.fr> |
2.9.0 02 Jun 2021 17:17:25 |
Dan Langille (dvl) |
security/acme.sh: update to 2.9.0
This removes support for ACME v1
re: https://github.com/acmesh-official/acme.sh/releases/tag/2.9.0 |
2.8.9 03 May 2021 23:09:43 |
Dan Langille (dvl) |
security/acme.sh: update to 2.8.9
* fixed --preferred-chain
* more DNS APIs are supported.
* bug fixes.
https://github.com/acmesh-official/acme.sh/releases/tag/2.8.9 |
2.8.8 07 Apr 2021 08:09:01 |
Mathieu Arnold (mat) |
One more small cleanup, forgotten yesterday.
Reported by: lwhsu |
2.8.8 06 Apr 2021 14:31:07 |
Mathieu Arnold (mat) |
Remove # $FreeBSD$ from Makefiles. |
2.8.8 01 Dec 2020 18:36:56 |
dvl |
Update to 2.8.8
* More dns apis added
* Bug fixes.
* Move CI checks from travis-ci to Github Actions by https://vmactions.org
https://github.com/acmesh-official/acme.sh/releases/tag/2.8.8 |
2.8.7 03 Sep 2020 21:36:53 |
dvl |
Update to 2.8.7
* Support External Account Binding(EAB)
* Support ZeroSSL.com CA
* Support preferred-chain
* More dns api support
* Adds Docker multi-arch build support |
2.8.6_2 02 Aug 2020 17:16:31 |
dvl |
Enable acme.sh to recognize sane sudo commands besides /bin/su and /bin/bash
PR: 248434
Submitted by: John W. O'Brien <john@saltant.com> |
2.8.6_1 02 Aug 2020 12:40:00 |
dvl |
Include missing plugin scripts
Thanks to Frank Wall <fw@moov.de> for the patch.
PR: 248425
Submitted by: phedoreanu <phedoreanu@wearehackerone.com>
MFH: 2020Q3 |
2.8.6 04 May 2020 01:02:47 |
dvl |
Update to 2.8.6
* bug fixes
* and new dns providers.
re: https://github.com/acmesh-official/acme.sh/releases/tag/2.8.6 |
2.8.5_1 18 Jan 2020 20:52:55 |
dvl |
Use EXAMPLES properly
Now you don't have to install them if you don't want them. This include
these directorys:
/var/db/acme/.acme.sh/deploy
/var/db/acme/.acme.sh/dnsapi
/var/db/acme/.acme.sh/notify
Reported by: mat
Reviewed by: sunpoet
Differential Revision: https://reviews.freebsd.org/D23209 |
2.8.5 16 Jan 2020 15:52:05 |
dvl |
Update to 2.8.5
bug fix: fix auto upgrade error message.
re: https://github.com/Neilpang/acme.sh/releases/tag/2.8.5
2.8.4 was skipped, but covered:
* Avoiding autoupdate by checking master hash value.
* more dns api support
* adapt recent letsencrypt ca http headers changes.
* bugs fixes.
re: https://github.com/Neilpang/acme.sh/releases/tag/2.8.4
While here, add in a lot of things missed in previous version of this port.
Look in share/examples/acme.sh/deploy,dnsapi,notify
Sorry about that. |
2.8.3 28 Sep 2019 17:14:06 |
dvl |
Update to 2.8.3
Letsencrypt CA recent changed the CDN provider, which resulted in hanging
issues. Any downstream package should update. This is important.
re: https://github.com/Neilpang/acme.sh/releases/tag/2.8.3
Submitted by: Ken (via private email) |
2.8.2_1 21 Aug 2019 15:28:25 |
dvl |
Fix build for IDN when not using BINDTOOLS by correcting the RUN_DEPENDS:
Remove: idn2:dns/idnkit2
Add: idn2:dns/libidn2
I believe this is a case of incorrect RUN_DEPENDS.
The problem does not appear when using BINDTOOLS because that option pulls
in libidn2 via dns/bind-tools
Reported by: Russian <russian@russerver.org>
MFH: 2019Q3 |
2.8.2_1 14 Aug 2019 12:16:13 |
mat |
Convert to UCL & cleanup pkg-message (categories s) |
2.8.2_1 11 Aug 2019 19:23:09 |
dvl |
Include the notify directory, for all those new features mentioned in the
previous commit.
Reported by: Ken |
2.8.2 11 Aug 2019 15:34:08 |
dvl |
Update to 2.8.2
* Support notifications for renewal: email, mailgun, sendgrid, IFTTT, pushover
etc. https://github.com/Neilpang/acme.sh/wiki/notify
* add deploy hook to docker containers:
https://github.com/Neilpang/acme.sh/wiki/deploy-to-docker-containers
* dns api: Schlundtech, NLnetLabs , acmeproxy, durabledns, Active24, MaraDNS,
regru, jdcloud.com(?????????), Vultr, hexonet
* Support cloudflare new dns api Token format
* bug fixes.
re https://github.com/Neilpang/acme.sh/releases/tag/2.8.2 |
2.8.1_2 28 Jul 2019 18:05:25 |
dvl |
Remove references to ${LOCALBASE}/bin/ - they are redudant
Credit to: adamw |
2.8.1_1 27 Jul 2019 15:28:19 |
dvl |
Add IDN support
PR: 238237
Submitted by: takefu@airport.fm |
2.8.1 29 Apr 2019 20:24:21 |
dvl |
Upgrade to 2.8.1
* Use letsencrypt v2 api as default.
* Use dns over tls to check domain status.
* Support Windows native taskschuler for cronjob.
* fix IDN name issues.
* fix other issues.
re https://github.com/Neilpang/acme.sh/releases/tag/2.8.1 |
2.8.0 25 Feb 2019 22:31:39 |
dvl |
Upgrade to 2.8.0
Add a C to the syslog.conf example and comment it out
Make this pass testport by moving stuff from pkg-install into the Makefile
PR: 228829,236041,228791
Submitted by: Lapo Luchini <lapo@lapo.it>,Frank Wall <fw@moov.de>,Mark Felder
<feld@FreeBSD.org> |
2.7.9_1 09 Sep 2018 22:48:30 |
woodsb02 |
security/acme.sh: Use .conf suffix for /usr/local/etc/newsyslog.conf.d/
Rename files intended for installation to /usr/local/etc/newsyslog.conf.d/
to end with a '.conf' suffix.
Proposed changes to /etc/newsyslog.conf will only include files from the
/usr/local/etc/newsyslog.conf.d/ directory which end with '.conf' and do
not beginning with a '.' character. https://reviews.freebsd.org/D17086
Approved by: dvl (maintainer)
Differential Revision: https://reviews.freebsd.org/D17092 |
2.7.9 19 Jul 2018 12:55:43 |
dvl |
Update to 2.7.9
PR: 229884
Submitted by: brnrd |
2.7.8 29 Mar 2018 14:22:33 |
dvl |
Upgrade to 2.7.8
From the author:
* fix bugs in 2.7.7, Strongly recommended to upgrade from 2.7.7.
* more apis are fixed for acme v2 wildcard certs.
* New dns api: KingHost (https://www.kinghost.com.br/) and Zilore
(https://zilore.com) |
2.7.7 18 Mar 2018 23:08:08 |
dvl |
Update to version 2.7.7
PR: 226587
Submitted by: Jose Luis Duran <jlduran@gmail.com> |
2.7.6_2 16 Feb 2018 17:23:28 |
dvl |
Add missing link to the deploy directory
PR: 225954
Submitted by: Jose Luis Duran <jlduran@gmail.com> |
2.7.6_1 15 Feb 2018 22:55:29 |
dvl |
Fix typo
Reported by: "Herbert J. Skuhra" <herbert@gojira.at> |
2.7.6 15 Feb 2018 21:26:32 |
dvl |
Update security/acme.sh to version 2.7.6
1. Full support with ACME v2, staging only.
2. Bug fixes
3. More DNS api
PR: 225881
Submitted by: Jose Luis Duran <jlduran@gmail.com> |
2.7.5_2 13 Jan 2018 20:47:24 |
dvl |
Set STANDALONE default to ON by default.
This pulls in net/socat
PR: 225107
Submitted by: Ed Schouten <ed@FreeBSD.org> |
2.7.5_1 11 Jan 2018 14:18:01 |
danfe |
Do not abuse INSTALL_MAN when installing documentation, examples, and
other miscellaneous files that are not actually manual pages (part 2). |
2.7.5_1 23 Dec 2017 17:08:16 |
dvl |
Add standalone option to pull in socat
PR: 224549
Reported by: ferrao@if.ufrj.br |
2.7.5 05 Dec 2017 20:08:26 |
dvl |
Upgrade to 2.7.5
PR: 224104
Submitted by: olgeni |
2.7.4_1 13 Sep 2017 15:11:04 |
dvl |
Provide a sample cronjob |
2.7.4 02 Sep 2017 19:34:33 |
dvl |
Upgrade to 2.7.4
PR: 222005
Submitted by: olgeni |
2.7.3 01 Sep 2017 16:27:39 |
dvl |
Upgrade to 2.7.3
PR: 221979
Submitted by: olgeni |
2.7.2 26 Jul 2017 17:18:57 |
dvl |
update to 2.7.2
PR: 221020
Submitted by: olgeni |
2.6.9_3 03 Jul 2017 22:22:04 |
dvl |
Add some sane defaults in account.conf to get you started.
Supply a link to the dnsapi/deploy scripts so it all just works.
Create ~acme/.acme.sh & ~acme/certs to make things easier.
Also provide a newsyslog.conf sample file for the log file rotation.
Differential Revision: https://reviews.freebsd.org/D11450 |
2.6.9_2 05 Jun 2017 00:47:14 |
dvl |
Include practical examples for both deploy and dnsapi
Provide options for installing curl, wget, BINDTOOLS, and DOCS.
Submitted by: feld |
2.6.9_1 20 May 2017 14:42:50 |
dvl |
whitespace adjustments
Submitted by: Joseph Mingrone <jrm@FreeBSD.org>
Reported by: Alexey Dokuchaev <danfe@freebsd.org> |
2.6.9 20 May 2017 02:27:45 |
dvl |
A pure Unix shell script implementing ACME client protocol
Differential Revision: https://reviews.freebsd.org/D10308 |