Comments (7)
I have just released acme4j v1.1, which contains the changes. Thank you for the hint!
from acme4j.
You are right... Downloading and writing the certificate and chain is overly complicated.
Like you suggested, I have added a new method Certificate.downloadFullChain()
that returns an array of the certificate and the issuer chain. A new method CertificateUtils.writeX509Certificates()
writes it to a combined pem file.
I have also enhanced the javadocs and the documentation, so it should be clearer now what is returned by the individual download methods.
See commits 69fbe81 and d6b4a43.
Is it what you needed?
from acme4j.
Thank you for the fast reply, that looks exactly how I expected. Special thanks for the enhancements in javadocs. π
from acme4j.
Did this get dropped somewhere along the line? I'm using v2.7 but can't workout how to download the full chain. Looks like the CertificateUtils had all it's goodness stripped out?
from acme4j.
Everything you need should have been moved into the Certificate
object. You can get the certificate chain from Certificate.getCertificateChain()
now. Certificate.writeCertificate()
writes the certificate chain as PEM file.
If something is still missing for you, just let me know. π
from acme4j.
Thanks for the response dude, I'm having a world of issues getting certs generated to work with Spring boot, rather than clutter up your issue tracker here I've opened a Stack overflow post - would you mind taking a quick glance to see if I've just made a mess of things? https://stackoverflow.com/questions/55959315/spring-boot-and-lets-encrypt-no-cipher-suites-in-common
Thanks for the awesome library by the way - works a treat to generate certs :) (If only I knew how to use them!)
from acme4j.
Your problem has been solved on Stack Overflow in the meantime?
Questions about using the certs with Tomcat (and now Spring Boot) are rather common. I should start to document them as well.
from acme4j.
Related Issues (20)
- The challenge status is always "INVALID" HOT 5
- The challenge status was always "INVALID" HOT 13
- http://${domain}/.well-known/acme-challenge/${token}
- acme4j example is creating zero- length crt files HOT 10
- preferred-chain attribute, for alternate chains HOT 2
- Can only parse traditional files HOT 2
- EAB HMAC keys with arbitrary lengths HOT 5
- CVE-2023-33201 from Bouncy Castle HOT 8
- add utils to do pre validation or help
- How to check if certificate needs renewal without ordering a new one? HOT 8
- Is there a way to keep txt unchanged and verify twiceοΌ HOT 2
- New account registration HOT 1
- Bouncy Castel dependency? HOT 9
- Allow to pass query parameters in directory URL HOT 2
- Provide example showing how to save and load existing certificates HOT 2
- AcmeJsonResource#update throws AcmeRetryAfterException even if resource is ready HOT 3
- Abstract away certificate renewal HOT 6
- response is not reading correctly HOT 3
- Java 22 Support HOT 1
- OrderBuilder.replaces() functions assume auto-renewal support by the server HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from acme4j.