Releases: gregtwallace/certwarden
Releases · gregtwallace/certwarden
Cert Warden v0.23.0
[v0.23.0] - 2024-12-07
This release adds a few new features.
Added
- Add PFX download route (https://www.certwarden.com/docs/using_certificates/api_calls/#get-pkcs12-pfxp12-with-certificate-chain-and-private-key).
- Add challenge domain aliases (https://www.certwarden.com/docs/user_interface/providers/#domain-aliases).
- Add more detailed error messages and display them to the user.
Cert Warden v0.22.3
[v0.22.3] - 2024-11-26
Minor updates and fixes.
Added
- Log error when failing to write the
env.jsfile. - Add some initial code for alias support.
- Add
oath-toolkit-oathtooldep for acme.sh.
Fixed
- Fix possible nil deref when serving the https certificate.
- Update gomarkdown pkg to address alert.
- Update goland-jwt pkg to address alert.
Changed
- Update to go version 1.23.3.
- Update to node version 18.20.5.
- Update
acme.shto version 3.0.9. - Set default
env.jsto the actual defaults. Some users have run into issues
writing this file, so this will bandaid the situation somewhat.
Cert Warden v0.22.2
[v0.22.2] - 2024-09-29
Update Vite to address some security issues.
Cert Warden v0.22.1
[v0.22.1] - 2024-09-07
The auto ordering logic was updated to make Cert Warden more friendly to all ACME
servers (instead of focusing on Let's Encrypt). Renewal time is now calculated
based on the percentage of a certificate's validity that is remaining instead of
a static number of days. A tooltip was added to easily see this information in the
Dashboard. Eventually the ACME Renewal Information (ARI) Extentsion will be used
but since the relevant spec is not yet finalized, I have chosed to not implement
it yet.
Added
- Add tooltip on frontend Dashboard when hovering over the days until expiration.
Tooltip shows percentage of validity remaining and the anticipated automatic
renewal date.
Fixed
- Updated grpc dependency on backend. I don't believe the issue actually
impacts Cert Warden but the update was done anyway.
Changed
- Change auto ordering (i.e., renewal) logic. Instead of a fixed number of
days remaining, calculate when 1/3 of the certificate's validity remains
and then place the new order. For extremely short dated certificates, a
backstop value of 10 days is used and if validity drops below that regardless
of percentage, a new order will be placed. - Update frontend expiration days coloring to match the same logic as backend.
Warning color is used when a cert is within a week of renewal and red is used
when renewal is imminent or overdue. - Convert backend Order object time int members to time.Time.
- Overhaul frontend Flag component to separate logic out for different flags.
- Update pagination package so default value will return all results from the db.
- Update axios to 1.7.4 and vite to 5.4.0.
- Tighten some linting rules and lint accordingly.
- Use math/rand/v2 in safecert package.
Removed
- Remove
valid_remaining_days_thresholdconfig option in favor of new
certificate renewal logic. - Remove some dead validTo/validFrom code in backend.
Cert Warden v0.22.0
[v0.22.0] - 2024-07-11
Important
Old API routes using the /legocerthub prefix were previously
deprecated but are now completely removed. Anything still using the
old routes after upgrade will break.
Additionally, the legocerthub docker builds will no longer be
updated. Builds starting with this version will only be posted under
certwarden on both GitHub and DockerHub.
This release removes some old remnants of LeGo CertHub and also adds some
minor features.
Added
- Add ability to specify the desired Root Certificate for a certificate.
This option was added under the CSR of a Certificate and behaves the
same way as Certbot's--preferred-chainflag. - Add confirmation dialog for certificate order revocation. Additionally,
the confirmation dialog allows specifying a recovation code. - Add a button on the frontend edit account screen to easily copy the
account URL.
Fixed
- Fix footer theme icon to correctly use my custom component.
Changed
- Changed orders table to show the root cert's Common Name moving
forward. Since this information was not parsed in previous versions,
it will not be displayed on existing orders, only on orders fulfilled
in this version and later.
Removed
- Remove old
/legocerthubredirect routes. This will break anything
still using the old routes. - Disable posting of new docker builds under the old
legocerthub
name.
Cert Warden v0.21.6
[v0.21.6] - 2024-07-02
Minor updates and fixes.
Added
N/A
Fixed
- Fix percentage formatting in
dns_checkerdebug messages. - Fix key pem formatting. In rare cases, an extra blank line was added
incorrectly. - Update a few dependencies to address Dependabot alerts.
- Fix backend mod file to properly set Go
1.22.4.
Changed
- The key pem formatting function was tweaked for code clarity and is
likely a little more robust now as a result. - Update Node JS to 18.20.3.
- Update Alpine to 3.20.
Removed
N/A
Note: v0.21.5 was removed due to issues with Go 1.22.5.
Cert Warden v0.21.4
[v0.21.4] - 2024-06-13
Minor updates and fixes.
If you are coming from <0.21.0, please read the warnings on 0.21.0.
Added
- Add better async order fulfillment. This was already supported but
the additional changes make it more robust. If you have the
debuglog level set you will see more API calls to the remote
ACME server. - Add more robust checking of downloaded certificate chains. Also
lay the groundwork for preferred chain selection in a future
version. Add some additional log messages related to this.
Fixed
- Fix linux install script and service files.
Changed
- Update some log messages for clarity.
- Update to Go 1.22.4.
- Minor code cleanup for var type and name clarity.
- Change some usage of ToLower to EqualFold instead as a better
coding practice. - Update
bracespkg.
Removed
N/A
Cert Warden v0.21.3
[v0.21.3] - 2024-05-17
Minor updates and fixes.
If you are coming from <0.21.0, please read the warnings on 0.21.0.
Added
N/A
Fixed
- Fix default certname. The app was looking for
certwardeninstead
ofserverdefault. - Fix various issues in dependencies.
Changed
- Update to Go 1.22.3.
- Update all dependencies (backend and frontend).
Removed
N/A
Cert Warden v0.21.2
[v0.21.2] - 2024-05-07
Minor updates and fixes.
If you are coming from <0.21.0, please read the warnings on 0.21.0.
Added
- Always show Account URL. Some ACME providers (like Let's Encrypt)
allow CAA records that specify specific account(s) that are allowed
to issue certificates. Make the account URL always visible to make
it easier to generate such records. - Add refresh Account button on the edit account page. The button
queries the ACME server for the current state of the account and
saves it to Cert Warden. - Add debug log message that lists which dns servers dns_checker is
configured to use.
Fixed
- Update net package to address a dependabot alert re: http/2.
- Fix some file downloads having duplicate extension in the name of
the file (e.g..pem.pem). - Fix retry after badNonce error for some ACME servers. (This is not
a Cert Warden bug. Some ACME servers apparently don't follow the
spec for how to handle badNonce. This fix allows Cert Warden to
handle these non-compliant servers. Cert Warden will log a warning
when this happens and the issue should be reported to the maintainer
of the non-compliant server.) - Fix some error messages printing in a garbled format.
Changed
- Minor API path rename for account registration.
- Minor styling changes in nonce manager.
Removed
N/A
Cert Warden v0.21.1
[v0.21.1] - 2024-04-19
Minor updates and fixes.
If you are coming from <0.21.0, please read the warnings on 0.21.0.
Added
- Add ability to use = (equal sign) in environment param values.
Fixed
- Fix environment param name and value checking. Be more strict about
what is allowed in a param name. Make the frontend logic match the
backend logic exactly. - Fix environment params slice not properly stripping quotes.
- Fix time parsing of old backup file names. (If you saw a bunch of
warnmessages in your logs about backups and times, this is the
fix.)
Changed
N/A
Removed
N/A