From 26f5a6265fc35c3caf2eaab7e29d8b02e9dfba8a Mon Sep 17 00:00:00 2001 From: srvrco Date: Tue, 2 Aug 2016 08:40:45 +0100 Subject: [PATCH] updated agreement for letsencrypt to update automatically --- getssl | 10 ++++++---- 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/getssl b/getssl index bede945..73197a5 100755 --- a/getssl +++ b/getssl @@ -87,15 +87,17 @@ # 2016-07-22 corrected issue in nslookup debug option - issue #74 (1.21) # 2016-07-26 add more server-types based on openssl s_client (1.22) # 2016-08-01 updated agreement for letsencrypt (1.23) +# 2016-08-02 updated agreement for letsencrypt to update automatically (1.24) # --------------------------------------------------------------------------- PROGNAME=${0##*/} -VERSION="1.23" +VERSION="1.24" # defaults CODE_LOCATION="https://raw.githubusercontent.com/srvrco/getssl/master/getssl" CA="https://acme-staging.api.letsencrypt.org" -AGREEMENT="https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf" +AGREEMENT=$(curl -I https://acme-v01.api.letsencrypt.org/terms 2>/dev/null | grep "Location:" | awk '{print $2}') +AGREEMENT=${AGREEMENT:=https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf} ACCOUNT_KEY_LENGTH=4096 WORKING_DIR=~/.getssl DOMAIN_KEY_LENGTH=4096 @@ -518,7 +520,7 @@ write_domain_template() { # write out a template file for a domain. # This server issues full certificates, however has rate limits #CA="https://acme-v01.api.letsencrypt.org" - #AGREEMENT="https://letsencrypt.org/documents/LE-SA-v1.0.1-July-27-2015.pdf" + #AGREEMENT="$AGREEMENT" # Set an email address associated with your account - generally set at account level rather than domain. #ACCOUNT_EMAIL="me@example.com" @@ -581,7 +583,7 @@ write_getssl_template() { # write out the main template file # This server issues full certificates, however has rate limits #CA="https://acme-v01.api.letsencrypt.org" - AGREEMENT="https://letsencrypt.org/documents/LE-SA-v1.0.1-July-27-2015.pdf" + AGREEMENT="$AGREEMENT" # Set an email address associated with your account - generally set at account level rather than domain. #ACCOUNT_EMAIL="me@example.com"