Infra-Mirrors/docker-swag
1
0
Fork 0
mirror of https://github.com/linuxserver/docker-swag.git synced 2024-07-01 00:51:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge remote-tracking branch 'origin/master' into certbot-revamp-config-file

Browse Source
This commit is contained in:
Eric Nemchik 2023-03-10 15:10:35 +00:00
commit ebd233860e
12 changed files with 408 additions and 258 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
Dockerfile
View File

@ -113,6 +113,7 @@ RUN \
certbot-dns-gehirn \ certbot-dns-gehirn \
certbot-dns-godaddy \ certbot-dns-godaddy \
certbot-dns-google \ certbot-dns-google \
certbot-dns-google-domains \
certbot-dns-he \ certbot-dns-he \
certbot-dns-hetzner \ certbot-dns-hetzner \
certbot-dns-infomaniak \ certbot-dns-infomaniak \
@ -147,7 +148,7 @@ RUN \
's|#ssl_trusted_certificate /config/keys/cert.crt;|ssl_trusted_certificate /config/keys/cert.crt;|' \ 's|#ssl_trusted_certificate /config/keys/cert.crt;|ssl_trusted_certificate /config/keys/cert.crt;|' \
/defaults/nginx/ssl.conf.sample && \ /defaults/nginx/ssl.conf.sample && \
echo "**** correct ip6tables legacy issue ****" && \ echo "**** correct ip6tables legacy issue ****" && \
rm \ rm \
/sbin/ip6tables && \ /sbin/ip6tables && \
ln -s \ ln -s \
/sbin/ip6tables-nft /sbin/ip6tables && \ /sbin/ip6tables-nft /sbin/ip6tables && \

3
Dockerfile.aarch64
View File

@ -113,6 +113,7 @@ RUN \
certbot-dns-gehirn \ certbot-dns-gehirn \
certbot-dns-godaddy \ certbot-dns-godaddy \
certbot-dns-google \ certbot-dns-google \
certbot-dns-google-domains \
certbot-dns-he \ certbot-dns-he \
certbot-dns-hetzner \ certbot-dns-hetzner \
certbot-dns-infomaniak \ certbot-dns-infomaniak \
@ -147,7 +148,7 @@ RUN \
's|#ssl_trusted_certificate /config/keys/cert.crt;|ssl_trusted_certificate /config/keys/cert.crt;|' \ 's|#ssl_trusted_certificate /config/keys/cert.crt;|ssl_trusted_certificate /config/keys/cert.crt;|' \
/defaults/nginx/ssl.conf.sample && \ /defaults/nginx/ssl.conf.sample && \
echo "**** correct ip6tables legacy issue ****" && \ echo "**** correct ip6tables legacy issue ****" && \
rm \ rm \
/sbin/ip6tables && \ /sbin/ip6tables && \
ln -s \ ln -s \
/sbin/ip6tables-nft /sbin/ip6tables && \ /sbin/ip6tables-nft /sbin/ip6tables && \

3
Dockerfile.armhf
View File

@ -113,6 +113,7 @@ RUN \
certbot-dns-gehirn \ certbot-dns-gehirn \
certbot-dns-godaddy \ certbot-dns-godaddy \
certbot-dns-google \ certbot-dns-google \
certbot-dns-google-domains \
certbot-dns-he \ certbot-dns-he \
certbot-dns-hetzner \ certbot-dns-hetzner \
certbot-dns-infomaniak \ certbot-dns-infomaniak \
@ -147,7 +148,7 @@ RUN \
's|#ssl_trusted_certificate /config/keys/cert.crt;|ssl_trusted_certificate /config/keys/cert.crt;|' \ 's|#ssl_trusted_certificate /config/keys/cert.crt;|ssl_trusted_certificate /config/keys/cert.crt;|' \
/defaults/nginx/ssl.conf.sample && \ /defaults/nginx/ssl.conf.sample && \
echo "**** correct ip6tables legacy issue ****" && \ echo "**** correct ip6tables legacy issue ****" && \
rm \ rm \
/sbin/ip6tables && \ /sbin/ip6tables && \
ln -s \ ln -s \
/sbin/ip6tables-nft /sbin/ip6tables && \ /sbin/ip6tables-nft /sbin/ip6tables && \

46
Jenkinsfile vendored
View File

@ -442,7 +442,8 @@ pipeline {
} }
steps { steps {
echo "Running on node: ${NODE_NAME}" echo "Running on node: ${NODE_NAME}"
sh "docker build \ sh "sed -r -i 's|(^FROM .*)|\\1\\n\\nENV LSIO_FIRST_PARTY=true|g' Dockerfile"
sh "docker buildx build \
--label \"org.opencontainers.image.created=${GITHUB_DATE}\" \ --label \"org.opencontainers.image.created=${GITHUB_DATE}\" \
--label \"org.opencontainers.image.authors=linuxserver.io\" \ --label \"org.opencontainers.image.authors=linuxserver.io\" \
--label \"org.opencontainers.image.url=https://github.com/linuxserver/docker-swag/packages\" \ --label \"org.opencontainers.image.url=https://github.com/linuxserver/docker-swag/packages\" \
@ -455,7 +456,7 @@ pipeline {
--label \"org.opencontainers.image.ref.name=${COMMIT_SHA}\" \ --label \"org.opencontainers.image.ref.name=${COMMIT_SHA}\" \
--label \"org.opencontainers.image.title=Swag\" \ --label \"org.opencontainers.image.title=Swag\" \
--label \"org.opencontainers.image.description=SWAG - Secure Web Application Gateway (formerly known as letsencrypt, no relation to Let's Encrypt™) sets up an Nginx webserver and reverse proxy with php support and a built-in certbot client that automates free SSL server certificate generation and renewal processes (Let's Encrypt and ZeroSSL). It also contains fail2ban for intrusion prevention.\" \ --label \"org.opencontainers.image.description=SWAG - Secure Web Application Gateway (formerly known as letsencrypt, no relation to Let's Encrypt™) sets up an Nginx webserver and reverse proxy with php support and a built-in certbot client that automates free SSL server certificate generation and renewal processes (Let's Encrypt and ZeroSSL). It also contains fail2ban for intrusion prevention.\" \
--no-cache --pull -t ${IMAGE}:${META_TAG} \ --no-cache --pull -t ${IMAGE}:${META_TAG} --platform=linux/amd64 \
--build-arg ${BUILD_VERSION_ARG}=${EXT_RELEASE} --build-arg VERSION=\"${VERSION_TAG}\" --build-arg BUILD_DATE=${GITHUB_DATE} ." --build-arg ${BUILD_VERSION_ARG}=${EXT_RELEASE} --build-arg VERSION=\"${VERSION_TAG}\" --build-arg BUILD_DATE=${GITHUB_DATE} ."
} }
} }
@ -472,7 +473,8 @@ pipeline {
stage('Build X86') { stage('Build X86') {
steps { steps {
echo "Running on node: ${NODE_NAME}" echo "Running on node: ${NODE_NAME}"
sh "docker build \ sh "sed -r -i 's|(^FROM .*)|\\1\\n\\nENV LSIO_FIRST_PARTY=true|g' Dockerfile"
sh "docker buildx build \
--label \"org.opencontainers.image.created=${GITHUB_DATE}\" \ --label \"org.opencontainers.image.created=${GITHUB_DATE}\" \
--label \"org.opencontainers.image.authors=linuxserver.io\" \ --label \"org.opencontainers.image.authors=linuxserver.io\" \
--label \"org.opencontainers.image.url=https://github.com/linuxserver/docker-swag/packages\" \ --label \"org.opencontainers.image.url=https://github.com/linuxserver/docker-swag/packages\" \
@ -485,7 +487,7 @@ pipeline {
--label \"org.opencontainers.image.ref.name=${COMMIT_SHA}\" \ --label \"org.opencontainers.image.ref.name=${COMMIT_SHA}\" \
--label \"org.opencontainers.image.title=Swag\" \ --label \"org.opencontainers.image.title=Swag\" \
--label \"org.opencontainers.image.description=SWAG - Secure Web Application Gateway (formerly known as letsencrypt, no relation to Let's Encrypt™) sets up an Nginx webserver and reverse proxy with php support and a built-in certbot client that automates free SSL server certificate generation and renewal processes (Let's Encrypt and ZeroSSL). It also contains fail2ban for intrusion prevention.\" \ --label \"org.opencontainers.image.description=SWAG - Secure Web Application Gateway (formerly known as letsencrypt, no relation to Let's Encrypt™) sets up an Nginx webserver and reverse proxy with php support and a built-in certbot client that automates free SSL server certificate generation and renewal processes (Let's Encrypt and ZeroSSL). It also contains fail2ban for intrusion prevention.\" \
--no-cache --pull -t ${IMAGE}:amd64-${META_TAG} \ --no-cache --pull -t ${IMAGE}:amd64-${META_TAG} --platform=linux/amd64 \
--build-arg ${BUILD_VERSION_ARG}=${EXT_RELEASE} --build-arg VERSION=\"${VERSION_TAG}\" --build-arg BUILD_DATE=${GITHUB_DATE} ." --build-arg ${BUILD_VERSION_ARG}=${EXT_RELEASE} --build-arg VERSION=\"${VERSION_TAG}\" --build-arg BUILD_DATE=${GITHUB_DATE} ."
} }
} }
@ -499,7 +501,8 @@ pipeline {
sh '''#! /bin/bash sh '''#! /bin/bash
echo $GITHUB_TOKEN | docker login ghcr.io -u LinuxServer-CI --password-stdin echo $GITHUB_TOKEN | docker login ghcr.io -u LinuxServer-CI --password-stdin
''' '''
sh "docker build \ sh "sed -r -i 's|(^FROM .*)|\\1\\n\\nENV LSIO_FIRST_PARTY=true|g' Dockerfile.armhf"
sh "docker buildx build \
--label \"org.opencontainers.image.created=${GITHUB_DATE}\" \ --label \"org.opencontainers.image.created=${GITHUB_DATE}\" \
--label \"org.opencontainers.image.authors=linuxserver.io\" \ --label \"org.opencontainers.image.authors=linuxserver.io\" \
--label \"org.opencontainers.image.url=https://github.com/linuxserver/docker-swag/packages\" \ --label \"org.opencontainers.image.url=https://github.com/linuxserver/docker-swag/packages\" \
@ -512,7 +515,7 @@ pipeline {
--label \"org.opencontainers.image.ref.name=${COMMIT_SHA}\" \ --label \"org.opencontainers.image.ref.name=${COMMIT_SHA}\" \
--label \"org.opencontainers.image.title=Swag\" \ --label \"org.opencontainers.image.title=Swag\" \
--label \"org.opencontainers.image.description=SWAG - Secure Web Application Gateway (formerly known as letsencrypt, no relation to Let's Encrypt™) sets up an Nginx webserver and reverse proxy with php support and a built-in certbot client that automates free SSL server certificate generation and renewal processes (Let's Encrypt and ZeroSSL). It also contains fail2ban for intrusion prevention.\" \ --label \"org.opencontainers.image.description=SWAG - Secure Web Application Gateway (formerly known as letsencrypt, no relation to Let's Encrypt™) sets up an Nginx webserver and reverse proxy with php support and a built-in certbot client that automates free SSL server certificate generation and renewal processes (Let's Encrypt and ZeroSSL). It also contains fail2ban for intrusion prevention.\" \
--no-cache --pull -f Dockerfile.armhf -t ${IMAGE}:arm32v7-${META_TAG} \ --no-cache --pull -f Dockerfile.armhf -t ${IMAGE}:arm32v7-${META_TAG} --platform=linux/arm/v7 \
--build-arg ${BUILD_VERSION_ARG}=${EXT_RELEASE} --build-arg VERSION=\"${VERSION_TAG}\" --build-arg BUILD_DATE=${GITHUB_DATE} ." --build-arg ${BUILD_VERSION_ARG}=${EXT_RELEASE} --build-arg VERSION=\"${VERSION_TAG}\" --build-arg BUILD_DATE=${GITHUB_DATE} ."
sh "docker tag ${IMAGE}:arm32v7-${META_TAG} ghcr.io/linuxserver/lsiodev-buildcache:arm32v7-${COMMIT_SHA}-${BUILD_NUMBER}" sh "docker tag ${IMAGE}:arm32v7-${META_TAG} ghcr.io/linuxserver/lsiodev-buildcache:arm32v7-${COMMIT_SHA}-${BUILD_NUMBER}"
retry(5) { retry(5) {
@ -533,7 +536,8 @@ pipeline {
sh '''#! /bin/bash sh '''#! /bin/bash
echo $GITHUB_TOKEN | docker login ghcr.io -u LinuxServer-CI --password-stdin echo $GITHUB_TOKEN | docker login ghcr.io -u LinuxServer-CI --password-stdin
''' '''
sh "docker build \ sh "sed -r -i 's|(^FROM .*)|\\1\\n\\nENV LSIO_FIRST_PARTY=true|g' Dockerfile.aarch64"
sh "docker buildx build \
--label \"org.opencontainers.image.created=${GITHUB_DATE}\" \ --label \"org.opencontainers.image.created=${GITHUB_DATE}\" \
--label \"org.opencontainers.image.authors=linuxserver.io\" \ --label \"org.opencontainers.image.authors=linuxserver.io\" \
--label \"org.opencontainers.image.url=https://github.com/linuxserver/docker-swag/packages\" \ --label \"org.opencontainers.image.url=https://github.com/linuxserver/docker-swag/packages\" \
@ -546,7 +550,7 @@ pipeline {
--label \"org.opencontainers.image.ref.name=${COMMIT_SHA}\" \ --label \"org.opencontainers.image.ref.name=${COMMIT_SHA}\" \
--label \"org.opencontainers.image.title=Swag\" \ --label \"org.opencontainers.image.title=Swag\" \
--label \"org.opencontainers.image.description=SWAG - Secure Web Application Gateway (formerly known as letsencrypt, no relation to Let's Encrypt™) sets up an Nginx webserver and reverse proxy with php support and a built-in certbot client that automates free SSL server certificate generation and renewal processes (Let's Encrypt and ZeroSSL). It also contains fail2ban for intrusion prevention.\" \ --label \"org.opencontainers.image.description=SWAG - Secure Web Application Gateway (formerly known as letsencrypt, no relation to Let's Encrypt™) sets up an Nginx webserver and reverse proxy with php support and a built-in certbot client that automates free SSL server certificate generation and renewal processes (Let's Encrypt and ZeroSSL). It also contains fail2ban for intrusion prevention.\" \
--no-cache --pull -f Dockerfile.aarch64 -t ${IMAGE}:arm64v8-${META_TAG} \ --no-cache --pull -f Dockerfile.aarch64 -t ${IMAGE}:arm64v8-${META_TAG} --platform=linux/arm64 \
--build-arg ${BUILD_VERSION_ARG}=${EXT_RELEASE} --build-arg VERSION=\"${VERSION_TAG}\" --build-arg BUILD_DATE=${GITHUB_DATE} ." --build-arg ${BUILD_VERSION_ARG}=${EXT_RELEASE} --build-arg VERSION=\"${VERSION_TAG}\" --build-arg BUILD_DATE=${GITHUB_DATE} ."
sh "docker tag ${IMAGE}:arm64v8-${META_TAG} ghcr.io/linuxserver/lsiodev-buildcache:arm64v8-${COMMIT_SHA}-${BUILD_NUMBER}" sh "docker tag ${IMAGE}:arm64v8-${META_TAG} ghcr.io/linuxserver/lsiodev-buildcache:arm64v8-${COMMIT_SHA}-${BUILD_NUMBER}"
retry(5) { retry(5) {
@ -575,26 +579,12 @@ pipeline {
else else
LOCAL_CONTAINER=${IMAGE}:${META_TAG} LOCAL_CONTAINER=${IMAGE}:${META_TAG}
fi fi
if [ "${DIST_IMAGE}" == "alpine" ]; then touch ${TEMPDIR}/package_versions.txt
docker run --rm --entrypoint '/bin/sh' -v ${TEMPDIR}:/tmp ${LOCAL_CONTAINER} -c '\ docker run --rm \
apk info -v > /tmp/package_versions.txt && \ -v /var/run/docker.sock:/var/run/docker.sock:ro \
sort -o /tmp/package_versions.txt /tmp/package_versions.txt && \ -v ${TEMPDIR}:/tmp \
chmod 777 /tmp/package_versions.txt' ghcr.io/anchore/syft:latest \
elif [ "${DIST_IMAGE}" == "ubuntu" ]; then ${LOCAL_CONTAINER} -o table=/tmp/package_versions.txt
docker run --rm --entrypoint '/bin/sh' -v ${TEMPDIR}:/tmp ${LOCAL_CONTAINER} -c '\
apt list -qq --installed | sed "s#/.*now ##g" | cut -d" " -f1 > /tmp/package_versions.txt && \
sort -o /tmp/package_versions.txt /tmp/package_versions.txt && \
chmod 777 /tmp/package_versions.txt'
elif [ "${DIST_IMAGE}" == "fedora" ]; then
docker run --rm --entrypoint '/bin/sh' -v ${TEMPDIR}:/tmp ${LOCAL_CONTAINER} -c '\
rpm -qa > /tmp/package_versions.txt && \
sort -o /tmp/package_versions.txt /tmp/package_versions.txt && \
chmod 777 /tmp/package_versions.txt'
elif [ "${DIST_IMAGE}" == "arch" ]; then
docker run --rm --entrypoint '/bin/sh' -v ${TEMPDIR}:/tmp ${LOCAL_CONTAINER} -c '\
pacman -Q > /tmp/package_versions.txt && \
chmod 777 /tmp/package_versions.txt'
fi
NEW_PACKAGE_TAG=$(md5sum ${TEMPDIR}/package_versions.txt | cut -c1-8 ) NEW_PACKAGE_TAG=$(md5sum ${TEMPDIR}/package_versions.txt | cut -c1-8 )
echo "Package tag sha from current packages in buit container is ${NEW_PACKAGE_TAG} comparing to old ${PACKAGE_TAG} from github" echo "Package tag sha from current packages in buit container is ${NEW_PACKAGE_TAG} comparing to old ${PACKAGE_TAG} from github"
if [ "${NEW_PACKAGE_TAG}" != "${PACKAGE_TAG}" ]; then if [ "${NEW_PACKAGE_TAG}" != "${PACKAGE_TAG}" ]; then

4
README.md
View File

@ -215,7 +215,7 @@ Container images are configured using parameters passed at runtime (such as thos
| `-e VALIDATION=http` | Certbot validation method to use, options are `http` or `dns` (`dns` method also requires `DNSPLUGIN` variable set). | | `-e VALIDATION=http` | Certbot validation method to use, options are `http` or `dns` (`dns` method also requires `DNSPLUGIN` variable set). |
| `-e SUBDOMAINS=www,` | Subdomains you'd like the cert to cover (comma separated, no spaces) ie. `www,ftp,cloud`. For a wildcard cert, set this *exactly* to `wildcard` (wildcard cert is available via `dns` validation only) | | `-e SUBDOMAINS=www,` | Subdomains you'd like the cert to cover (comma separated, no spaces) ie. `www,ftp,cloud`. For a wildcard cert, set this *exactly* to `wildcard` (wildcard cert is available via `dns` validation only) |
| `-e CERTPROVIDER=` | Optionally define the cert provider. Set to `zerossl` for ZeroSSL certs (requires existing [ZeroSSL account](https://app.zerossl.com/signup) and the e-mail address entered in `EMAIL` env var). Otherwise defaults to Let's Encrypt. | | `-e CERTPROVIDER=` | Optionally define the cert provider. Set to `zerossl` for ZeroSSL certs (requires existing [ZeroSSL account](https://app.zerossl.com/signup) and the e-mail address entered in `EMAIL` env var). Otherwise defaults to Let's Encrypt. |
| `-e DNSPLUGIN=cloudflare` | Required if `VALIDATION` is set to `dns`. Options are `acmedns`, `aliyun`, `azure`, `cloudflare`, `cpanel`, `desec`, `digitalocean`, `directadmin`, `dnsimple`, `dnsmadeeasy`, `dnspod`, `do`, `domeneshop`, `duckdns`, `dynu`, `gandi`, `gehirn`, `godaddy`, `google`, `he`, `hetzner`, `infomaniak`, `inwx`, `ionos`, `linode`, `loopia`, `luadns`, `netcup`, `njalla`, `nsone`, `ovh`, `porkbun`, `rfc2136`, `route53`, `sakuracloud`, `standalone`, `transip`, and `vultr`. Also need to enter the credentials into the corresponding ini (or json for some plugins) file under `/config/dns-conf`. | | `-e DNSPLUGIN=cloudflare` | Required if `VALIDATION` is set to `dns`. Options are `acmedns`, `aliyun`, `azure`, `cloudflare`, `cpanel`, `desec`, `digitalocean`, `directadmin`, `dnsimple`, `dnsmadeeasy`, `dnspod`, `do`, `domeneshop`, `duckdns`, `dynu`, `gandi`, `gehirn`, `godaddy`, `google`, `google-domains`, `he`, `hetzner`, `infomaniak`, `inwx`, `ionos`, `linode`, `loopia`, `luadns`, `netcup`, `njalla`, `nsone`, `ovh`, `porkbun`, `rfc2136`, `route53`, `sakuracloud`, `standalone`, `transip`, and `vultr`. Also need to enter the credentials into the corresponding ini (or json for some plugins) file under `/config/dns-conf`. |
| `-e PROPAGATION=` | Optionally override (in seconds) the default propagation time for the dns plugins. | | `-e PROPAGATION=` | Optionally override (in seconds) the default propagation time for the dns plugins. |
| `-e EMAIL=` | Optional e-mail address used for cert expiration notifications (Required for ZeroSSL). | | `-e EMAIL=` | Optional e-mail address used for cert expiration notifications (Required for ZeroSSL). |
| `-e ONLY_SUBDOMAINS=false` | If you wish to get certs only for certain subdomains, but not the main domain (main domain may be hosted on another machine and cannot be validated), set this to `true` | | `-e ONLY_SUBDOMAINS=false` | If you wish to get certs only for certain subdomains, but not the main domain (main domain may be hosted on another machine and cannot be validated), set this to `true` |
@ -336,6 +336,8 @@ Once registered you can define the dockerfile to use with `-f Dockerfile.aarch64
## Versions ## Versions
* **09.03.23:** - Add Google Domains DNS support, `google-domains`.
* **02.03.23:** - Set permissions on crontabs during init.
* **09.02.23:** - [Existing users should update:](https://github.com/linuxserver/docker-swag/blob/master/README.md#updating-configs) proxy.conf, authelia-location.conf and authelia-server.conf - Add Authentik configs, update Authelia configs. * **09.02.23:** - [Existing users should update:](https://github.com/linuxserver/docker-swag/blob/master/README.md#updating-configs) proxy.conf, authelia-location.conf and authelia-server.conf - Add Authentik configs, update Authelia configs.
* **06.02.23:** - Add porkbun support back in. * **06.02.23:** - Add porkbun support back in.
* **21.01.23:** - Unpin certbot version (allow certbot 2.x). !!BREAKING CHANGE!! We are temporarily removing the certbot porkbun plugin until a new version is released that is compatible with certbot 2.x. * **21.01.23:** - Unpin certbot version (allow certbot 2.x). !!BREAKING CHANGE!! We are temporarily removing the certbot porkbun plugin until a new version is released that is compatible with certbot 2.x.

541
package_versions.txt
View File

@ -1,201 +1,340 @@
alpine-baselayout-3.4.0-r0 NAME VERSION TYPE
alpine-baselayout-data-3.4.0-r0 ConfigArgParse 1.5.3 python
alpine-keys-2.4-r1 PyJWT 2.6.0 python
alpine-release-3.17.1-r0 PyYAML 6.0 python
aom-libs-3.5.0-r0 acme 2.4.0 python
apache2-utils-2.4.55-r0 alpine-baselayout 3.4.0-r0 apk
apk-tools-2.12.10-r1 alpine-baselayout-data 3.4.0-r0 apk
apr-1.7.2-r0 alpine-keys 2.4-r1 apk
apr-util-1.6.3-r0 alpine-release 3.17.2-r0 apk
argon2-libs-20190702-r2 aom-libs 3.5.0-r0 apk
bash-5.2.15-r0 apache2-utils 2.4.56-r0 apk
brotli-libs-1.0.9-r9 apk-tools 2.12.10-r1 apk
busybox-1.35.0-r29 apr 1.7.2-r0 apk
busybox-binsh-1.35.0-r29 apr-util 1.6.3-r0 apk
c-client-2007f-r14 argon2-libs 20190702-r2 apk
ca-certificates-20220614-r4 attrs 22.2.0 python
ca-certificates-bundle-20220614-r4 azure-common 1.1.28 python
coreutils-9.1-r0 azure-core 1.26.3 python
curl-7.87.0-r1 azure-identity 1.12.0 python
fail2ban-1.0.2-r0 azure-mgmt-core 1.3.2 python
fontconfig-2.14.1-r0 azure-mgmt-dns 8.0.0 python
freetype-2.12.1-r0 bash 5.2.15-r0 apk
gdbm-1.23-r0 beautifulsoup4 4.11.2 python
git-2.38.3-r1 boto3 1.26.88 python
gmp-6.2.1-r2 botocore 1.29.88 python
gnupg-2.2.40-r0 brotli-libs 1.0.9-r9 apk
gnupg-dirmngr-2.2.40-r0 bs4 0.0.1 python
gnupg-gpgconf-2.2.40-r0 busybox 1.35.0 binary
gnupg-utils-2.2.40-r0 busybox 1.35.0-r29 apk
gnupg-wks-client-2.2.40-r0 busybox-binsh 1.35.0-r29 apk
gnutls-3.7.8-r3 c-client 2007f-r14 apk
gpg-2.2.40-r0 ca-certificates 20220614-r4 apk
gpg-agent-2.2.40-r0 ca-certificates-bundle 20220614-r4 apk
gpg-wks-server-2.2.40-r0 cachetools 5.3.0 python
gpgsm-2.2.40-r0 certbot 2.4.0 python
gpgv-2.2.40-r0 certbot-dns-acmedns 0.1.0 python
icu-data-en-72.1-r1 certbot-dns-aliyun 2.0.0 python
icu-libs-72.1-r1 certbot-dns-azure 2.1.0 python
ip6tables-1.8.8-r2 certbot-dns-cloudflare 2.4.0 python
iptables-1.8.8-r2 certbot-dns-cpanel 0.4.0 python
jq-1.6-r2 certbot-dns-desec 1.2.1 python
libacl-2.3.1-r1 certbot-dns-digitalocean 2.4.0 python
libassuan-2.5.5-r1 certbot-dns-directadmin 1.0.3 python
libattr-2.5.1-r2 certbot-dns-dnsimple 2.4.0 python
libavif-0.11.1-r0 certbot-dns-dnsmadeeasy 2.4.0 python
libbsd-0.11.7-r0 certbot-dns-dnspod 0.1.0 python
libbz2-1.0.8-r4 certbot-dns-do 0.31.0 python
libc-utils-0.7.2-r3 certbot-dns-domeneshop 0.2.9 python
libcrypto3-3.0.8-r0 certbot-dns-duckdns 1.2.1 python
libcurl-7.87.0-r1 certbot-dns-dynu 0.0.4 python
libdav1d-1.0.0-r2 certbot-dns-gehirn 2.4.0 python
libedit-20221030.3.1-r0 certbot-dns-godaddy 0.2.2 python
libevent-2.1.12-r5 certbot-dns-google 2.4.0 python
libexpat-2.5.0-r0 certbot-dns-google-domains 0.1.6 python
libffi-3.4.4-r0 certbot-dns-he 1.0.0 python
libgcc-12.2.1_git20220924-r4 certbot-dns-hetzner 2.0.0 python
libgcrypt-1.10.1-r0 certbot-dns-infomaniak 0.2.1 python
libgd-2.3.3-r3 certbot-dns-inwx 2.2.0 python
libgpg-error-1.46-r1 certbot-dns-ionos 2022.11.24 python
libice-1.0.10-r1 certbot-dns-linode 2.4.0 python
libidn-1.41-r0 certbot-dns-loopia 1.0.1 python
libintl-0.21.1-r1 certbot-dns-luadns 2.4.0 python
libjpeg-turbo-2.1.4-r0 certbot-dns-netcup 1.2.0 python
libksba-1.6.3-r0 certbot-dns-njalla 1.0.0 python
libldap-2.6.3-r6 certbot-dns-nsone 2.4.0 python
libmaxminddb-libs-1.7.1-r0 certbot-dns-ovh 2.4.0 python
libmcrypt-2.5.8-r10 certbot-dns-porkbun 0.7 python
libmd-1.0.4-r0 certbot-dns-rfc2136 2.4.0 python
libmemcached-libs-1.0.18-r5 certbot-dns-route53 2.4.0 python
libmnl-1.0.5-r0 certbot-dns-sakuracloud 2.4.0 python
libnftnl-1.2.4-r0 certbot-dns-standalone 1.1 python
libpng-1.6.38-r0 certbot-dns-transip 0.5.2 python
libpq-15.2-r0 certbot-dns-vultr 1.0.3 python
libproc-3.3.17-r2 certbot-plugin-gandi 1.4.3 python
libsasl-2.1.28-r3 certifi 2022.12.7 python
libseccomp-2.5.4-r0 cffi 1.15.1 python
libsm-1.2.3-r1 charset-normalizer 3.1.0 python
libsodium-1.0.18-r2 cloudflare 2.11.1 python
libssl3-3.0.8-r0 configobj 5.0.8 python
libstdc++-12.2.1_git20220924-r4 coreutils 9.1-r0 apk
libtasn1-4.19.0-r0 cryptography 39.0.2 python
libunistring-1.1-r0 curl 7.88.1-r0 apk
libuuid-2.38.1-r1 dataclasses-json 0.5.7 python
libwebp-1.2.4-r1 distro 1.8.0 python
libx11-1.8.4-r0 dns-lexicon 3.11.7 python
libxau-1.0.10-r0 dnslib 0.9.23 python
libxcb-1.15-r0 dnspython 2.3.0 python
libxdmcp-1.1.4-r0 domeneshop 0.4.3 python
libxext-1.3.5-r0 fail2ban 1.0.2 python
libxml2-2.10.3-r1 fail2ban 1.0.2-r0 apk
libxpm-3.5.15-r0 filelock 3.9.0 python
libxslt-1.1.37-r0 fontconfig 2.14.1-r0 apk
libxt-1.2.1-r0 freetype 2.12.1-r0 apk
libzip-1.9.2-r2 future 0.18.3 python
linux-pam-1.5.2-r1 gdbm 1.23-r0 apk
logrotate-3.20.1-r3 git 2.38.4-r1 apk
lz4-libs-1.9.4-r1 git-perl 2.38.4-r1 apk
memcached-1.6.17-r0 gmp 6.2.1-r2 apk
mpdecimal-2.5.1-r1 gnupg 2.2.40-r0 apk
musl-1.2.3-r4 gnupg-dirmngr 2.2.40-r0 apk
musl-utils-1.2.3-r4 gnupg-gpgconf 2.2.40-r0 apk
nano-7.0-r0 gnupg-utils 2.2.40-r0 apk
ncurses-libs-6.3_p20221119-r0 gnupg-wks-client 2.2.40-r0 apk
ncurses-terminfo-base-6.3_p20221119-r0 gnutls 3.7.8-r3 apk
nettle-3.8.1-r0 google-api-core 2.11.0 python
nghttp2-libs-1.51.0-r0 google-api-python-client 2.80.0 python
nginx-1.22.1-r0 google-auth 2.16.2 python
nginx-mod-devel-kit-1.22.1-r0 google-auth-httplib2 0.1.0 python
nginx-mod-http-brotli-1.22.1-r0 googleapis-common-protos 1.58.0 python
nginx-mod-http-dav-ext-1.22.1-r0 gpg 2.2.40-r0 apk
nginx-mod-http-echo-1.22.1-r0 gpg-agent 2.2.40-r0 apk
nginx-mod-http-fancyindex-1.22.1-r0 gpg-wks-server 2.2.40-r0 apk
nginx-mod-http-geoip2-1.22.1-r0 gpgsm 2.2.40-r0 apk
nginx-mod-http-headers-more-1.22.1-r0 gpgv 2.2.40-r0 apk
nginx-mod-http-image-filter-1.22.1-r0 httplib2 0.21.0 python
nginx-mod-http-perl-1.22.1-r0 icu-data-en 72.1-r1 apk
nginx-mod-http-redis2-1.22.1-r0 icu-libs 72.1-r1 apk
nginx-mod-http-set-misc-1.22.1-r0 idna 3.4 python
nginx-mod-http-upload-progress-1.22.1-r0 importlib-metadata 6.0.0 python
nginx-mod-http-xslt-filter-1.22.1-r0 ip6tables 1.8.8-r2 apk
nginx-mod-mail-1.22.1-r0 iptables 1.8.8-r2 apk
nginx-mod-rtmp-1.22.1-r0 isodate 0.6.1 python
nginx-mod-stream-1.22.1-r0 jmespath 1.0.1 python
nginx-mod-stream-geoip2-1.22.1-r0 josepy 1.13.0 python
nginx-vim-1.22.1-r0 jq 1.6-r2 apk
npth-1.6-r2 jsonlines 3.1.0 python
oniguruma-6.9.8-r0 jsonpickle 3.0.1 python
openssl-3.0.8-r0 libacl 2.3.1-r1 apk
p11-kit-0.24.1-r1 libassuan 2.5.5-r1 apk
pcre-8.45-r2 libattr 2.5.1-r2 apk
pcre2-10.42-r0 libavif 0.11.1-r0 apk
perl-5.36.0-r0 libbsd 0.11.7-r0 apk
php81-8.1.16-r0 libbz2 1.0.8-r4 apk
php81-bcmath-8.1.16-r0 libc-utils 0.7.2-r3 apk
php81-bz2-8.1.16-r0 libcrypto3 3.0.8-r0 apk
php81-common-8.1.16-r0 libcurl 7.88.1-r0 apk
php81-ctype-8.1.16-r0 libdav1d 1.0.0-r2 apk
php81-curl-8.1.16-r0 libedit 20221030.3.1-r0 apk
php81-dom-8.1.16-r0 libevent 2.1.12-r5 apk
php81-exif-8.1.16-r0 libexpat 2.5.0-r0 apk
php81-fileinfo-8.1.15-r0 libffi 3.4.4-r0 apk
php81-fpm-8.1.15-r0 libgcc 12.2.1_git20220924-r4 apk
php81-ftp-8.1.16-r0 libgcrypt 1.10.1-r0 apk
php81-gd-8.1.16-r0 libgd 2.3.3-r3 apk
php81-gmp-8.1.16-r0 libgpg-error 1.46-r1 apk
php81-iconv-8.1.16-r0 libice 1.0.10-r1 apk
php81-imap-8.1.16-r0 libidn 1.41-r0 apk
php81-intl-8.1.16-r0 libintl 0.21.1-r1 apk
php81-ldap-8.1.16-r0 libjpeg-turbo 2.1.4-r0 apk
php81-mbstring-8.1.16-r0 libksba 1.6.3-r0 apk
php81-mysqli-8.1.16-r0 libldap 2.6.3-r6 apk
php81-mysqlnd-8.1.16-r0 libmaxminddb-libs 1.7.1-r0 apk
php81-opcache-8.1.16-r0 libmcrypt 2.5.8-r10 apk
php81-openssl-8.1.16-r0 libmd 1.0.4-r0 apk
php81-pdo-8.1.16-r0 libmemcached-libs 1.0.18-r5 apk
php81-pdo_mysql-8.1.16-r0 libmnl 1.0.5-r0 apk
php81-pdo_odbc-8.1.16-r0 libnftnl 1.2.4-r0 apk
php81-pdo_pgsql-8.1.16-r0 libpng 1.6.38-r0 apk
php81-pdo_sqlite-8.1.16-r0 libpq 15.2-r0 apk
php81-pear-8.1.16-r0 libproc 3.3.17-r2 apk
php81-pecl-apcu-5.1.22-r0 libsasl 2.1.28-r3 apk
php81-pecl-igbinary-3.2.12-r0 libseccomp 2.5.4-r0 apk
php81-pecl-mailparse-3.1.4-r0 libsm 1.2.3-r1 apk
php81-pecl-mcrypt-1.0.4-r0 libsodium 1.0.18-r2 apk
php81-pecl-memcached-3.2.0-r0 libssl3 3.0.8-r0 apk
php81-pecl-redis-5.3.7-r0 libstdc++ 12.2.1_git20220924-r4 apk
php81-pecl-xmlrpc-1.0.0_rc3-r0 libtasn1 4.19.0-r0 apk
php81-pgsql-8.1.16-r0 libunistring 1.1-r0 apk
php81-phar-8.1.16-r0 libuuid 2.38.1-r1 apk
php81-posix-8.1.16-r0 libwebp 1.2.4-r1 apk
php81-session-8.1.16-r0 libx11 1.8.4-r0 apk
php81-simplexml-8.1.15-r0 libxau 1.0.10-r0 apk
php81-soap-8.1.16-r0 libxcb 1.15-r0 apk
php81-sockets-8.1.16-r0 libxdmcp 1.1.4-r0 apk
php81-sodium-8.1.16-r0 libxext 1.3.5-r0 apk
php81-sqlite3-8.1.16-r0 libxml2 2.10.3-r1 apk
php81-tokenizer-8.1.16-r0 libxpm 3.5.15-r0 apk
php81-xml-8.1.16-r0 libxslt 1.1.37-r0 apk
php81-xmlreader-8.1.16-r0 libxt 1.2.1-r0 apk
php81-xmlwriter-8.1.15-r0 libzip 1.9.2-r2 apk
php81-xsl-8.1.16-r0 linux-pam 1.5.2-r1 apk
php81-zip-8.1.16-r0 logrotate 3.20.1-r3 apk
pinentry-1.2.1-r0 loopialib 0.2.0 python
popt-1.19-r0 lxml 4.9.2 python
procps-3.3.17-r2 lz4-libs 1.9.4-r1 apk
python3-3.10.10-r0 marshmallow 3.19.0 python
readline-8.2.0-r0 marshmallow-enum 1.5.1 python
scanelf-1.3.5-r1 memcached 1.6.17 binary
shadow-4.13-r0 memcached 1.6.17-r0 apk
skalibs-2.12.0.1-r0 mock 5.0.1 python
sqlite-libs-3.40.1-r0 mpdecimal 2.5.1-r1 apk
ssl_client-1.35.0-r29 msal 1.21.0 python
tiff-4.4.0-r1 msal-extensions 1.0.0 python
tzdata-2022f-r1 msrest 0.7.1 python
unixodbc-2.3.11-r0 musl 1.2.3-r4 apk
utmps-libs-0.1.2.0-r1 musl-utils 1.2.3-r4 apk
whois-5.5.14-r0 mypy-extensions 1.0.0 python
xz-5.2.9-r0 nano 7.0-r0 apk
xz-libs-5.2.9-r0 ncurses-libs 6.3_p20221119-r0 apk
zlib-1.2.13-r0 ncurses-terminfo-base 6.3_p20221119-r0 apk
zstd-libs-1.5.2-r9 netcat-openbsd 1.130-r4 apk
nettle 3.8.1-r0 apk
nghttp2-libs 1.51.0-r0 apk
nginx 1.22.1-r0 apk
nginx-mod-devel-kit 1.22.1-r0 apk
nginx-mod-http-brotli 1.22.1-r0 apk
nginx-mod-http-dav-ext 1.22.1-r0 apk
nginx-mod-http-echo 1.22.1-r0 apk
nginx-mod-http-fancyindex 1.22.1-r0 apk
nginx-mod-http-geoip2 1.22.1-r0 apk
nginx-mod-http-headers-more 1.22.1-r0 apk
nginx-mod-http-image-filter 1.22.1-r0 apk
nginx-mod-http-perl 1.22.1-r0 apk
nginx-mod-http-redis2 1.22.1-r0 apk
nginx-mod-http-set-misc 1.22.1-r0 apk
nginx-mod-http-upload-progress 1.22.1-r0 apk
nginx-mod-http-xslt-filter 1.22.1-r0 apk
nginx-mod-mail 1.22.1-r0 apk
nginx-mod-rtmp 1.22.1-r0 apk
nginx-mod-stream 1.22.1-r0 apk
nginx-mod-stream-geoip2 1.22.1-r0 apk
nginx-vim 1.22.1-r0 apk
npth 1.6-r2 apk
oauth2client 4.1.3 python
oauthlib 3.2.2 python
oniguruma 6.9.8-r0 apk
openssl 3.0.8-r0 apk
p11-kit 0.24.1-r1 apk
packaging 23.0 python
parsedatetime 2.6 python
pcre 8.45-r2 apk
pcre2 10.42-r0 apk
perl 5.36.0-r0 apk
perl-error 0.17029-r1 apk
perl-git 2.38.4-r1 apk
php-cli 8.1.16 binary
php-fpm 8.1.16 binary
php81 8.1.16-r0 apk
php81-bcmath 8.1.16-r0 apk
php81-bz2 8.1.16-r0 apk
php81-common 8.1.16-r0 apk
php81-ctype 8.1.16-r0 apk
php81-curl 8.1.16-r0 apk
php81-dom 8.1.16-r0 apk
php81-exif 8.1.16-r0 apk
php81-fileinfo 8.1.16-r0 apk
php81-fpm 8.1.16-r0 apk
php81-ftp 8.1.16-r0 apk
php81-gd 8.1.16-r0 apk
php81-gmp 8.1.16-r0 apk
php81-iconv 8.1.16-r0 apk
php81-imap 8.1.16-r0 apk
php81-intl 8.1.16-r0 apk
php81-ldap 8.1.16-r0 apk
php81-mbstring 8.1.16-r0 apk
php81-mysqli 8.1.16-r0 apk
php81-mysqlnd 8.1.16-r0 apk
php81-opcache 8.1.16-r0 apk
php81-openssl 8.1.16-r0 apk
php81-pdo 8.1.16-r0 apk
php81-pdo_mysql 8.1.16-r0 apk
php81-pdo_odbc 8.1.16-r0 apk
php81-pdo_pgsql 8.1.16-r0 apk
php81-pdo_sqlite 8.1.16-r0 apk
php81-pear 8.1.16-r0 apk
php81-pecl-apcu 5.1.22-r0 apk
php81-pecl-igbinary 3.2.12-r0 apk
php81-pecl-mailparse 3.1.4-r0 apk
php81-pecl-mcrypt 1.0.6-r0 apk
php81-pecl-memcached 3.2.0-r0 apk
php81-pecl-redis 5.3.7-r0 apk
php81-pecl-xmlrpc 1.0.0_rc3-r0 apk
php81-pgsql 8.1.16-r0 apk
php81-phar 8.1.16-r0 apk
php81-posix 8.1.16-r0 apk
php81-session 8.1.16-r0 apk
php81-simplexml 8.1.16-r0 apk
php81-soap 8.1.16-r0 apk
php81-sockets 8.1.16-r0 apk
php81-sodium 8.1.16-r0 apk
php81-sqlite3 8.1.16-r0 apk
php81-tokenizer 8.1.16-r0 apk
php81-xml 8.1.16-r0 apk
php81-xmlreader 8.1.16-r0 apk
php81-xmlwriter 8.1.16-r0 apk
php81-xsl 8.1.16-r0 apk
php81-zip 8.1.16-r0 apk
pinentry 1.2.1-r0 apk
pip 23.0.1 python
pkb-client 1.2 python
popt 1.19-r0 apk
portalocker 2.7.0 python
procps 3.3.17-r2 apk
protobuf 4.22.1 python
publicsuffixlist 0.9.3 python
pyOpenSSL 23.0.0 python
pyRFC3339 1.1 python
pyacmedns 0.4 python
pyasn1 0.4.8 python
pyasn1-modules 0.2.8 python
pycparser 2.21 python
pyparsing 3.0.9 python
python 3.10.10 binary
python-dateutil 2.8.2 python
python-digitalocean 1.17.0 python
python-transip 0.6.0 python
python3 3.10.10-r0 apk
pytz 2022.7.1 python
readline 8.2.0-r0 apk
requests 2.28.2 python
requests-file 1.5.1 python
requests-mock 1.10.0 python
requests-oauthlib 1.3.1 python
rsa 4.9 python
s3transfer 0.6.0 python
scanelf 1.3.5-r1 apk
setuptools 65.5.0 python
shadow 4.13-r0 apk
six 1.16.0 python
skalibs 2.12.0.1-r0 apk
soupsieve 2.4 python
sqlite-libs 3.40.1-r0 apk
ssl_client 1.35.0-r29 apk
tiff 4.4.0-r1 apk
tldextract 3.4.0 python
typing-inspect 0.8.0 python
typing_extensions 4.5.0 python
tzdata 2022f-r1 apk
unixodbc 2.3.11-r0 apk
uritemplate 4.1.1 python
urllib3 1.26.14 python
utmps-libs 0.1.2.0-r1 apk
wheel 0.38.4 python
whois 5.5.14-r0 apk
xz 5.2.9-r0 apk
xz-libs 5.2.9-r0 apk
zipp 3.15.0 python
zlib 1.2.13-r0 apk
zope.interface 5.5.2 python
zstd-libs 1.5.2-r9 apk

4
readme-vars.yml
View File

@ -51,7 +51,7 @@ opt_param_usage_include_env: true
opt_param_env_vars: opt_param_env_vars:
- { env_var: "SUBDOMAINS", env_value: "www,", desc: "Subdomains you'd like the cert to cover (comma separated, no spaces) ie. `www,ftp,cloud`. For a wildcard cert, set this *exactly* to `wildcard` (wildcard cert is available via `dns` validation only)" } - { env_var: "SUBDOMAINS", env_value: "www,", desc: "Subdomains you'd like the cert to cover (comma separated, no spaces) ie. `www,ftp,cloud`. For a wildcard cert, set this *exactly* to `wildcard` (wildcard cert is available via `dns` validation only)" }
- { env_var: "CERTPROVIDER", env_value: "", desc: "Optionally define the cert provider. Set to `zerossl` for ZeroSSL certs (requires existing [ZeroSSL account](https://app.zerossl.com/signup) and the e-mail address entered in `EMAIL` env var). Otherwise defaults to Let's Encrypt." } - { env_var: "CERTPROVIDER", env_value: "", desc: "Optionally define the cert provider. Set to `zerossl` for ZeroSSL certs (requires existing [ZeroSSL account](https://app.zerossl.com/signup) and the e-mail address entered in `EMAIL` env var). Otherwise defaults to Let's Encrypt." }
- { env_var: "DNSPLUGIN", env_value: "cloudflare", desc: "Required if `VALIDATION` is set to `dns`. Options are `acmedns`, `aliyun`, `azure`, `cloudflare`, `cpanel`, `desec`, `digitalocean`, `directadmin`, `dnsimple`, `dnsmadeeasy`, `dnspod`, `do`, `domeneshop`, `duckdns`, `dynu`, `gandi`, `gehirn`, `godaddy`, `google`, `he`, `hetzner`, `infomaniak`, `inwx`, `ionos`, `linode`, `loopia`, `luadns`, `netcup`, `njalla`, `nsone`, `ovh`, `porkbun`, `rfc2136`, `route53`, `sakuracloud`, `standalone`, `transip`, and `vultr`. Also need to enter the credentials into the corresponding ini (or json for some plugins) file under `/config/dns-conf`." } - { env_var: "DNSPLUGIN", env_value: "cloudflare", desc: "Required if `VALIDATION` is set to `dns`. Options are `acmedns`, `aliyun`, `azure`, `cloudflare`, `cpanel`, `desec`, `digitalocean`, `directadmin`, `dnsimple`, `dnsmadeeasy`, `dnspod`, `do`, `domeneshop`, `duckdns`, `dynu`, `gandi`, `gehirn`, `godaddy`, `google`, `google-domains`, `he`, `hetzner`, `infomaniak`, `inwx`, `ionos`, `linode`, `loopia`, `luadns`, `netcup`, `njalla`, `nsone`, `ovh`, `porkbun`, `rfc2136`, `route53`, `sakuracloud`, `standalone`, `transip`, and `vultr`. Also need to enter the credentials into the corresponding ini (or json for some plugins) file under `/config/dns-conf`." }
- { env_var: "PROPAGATION", env_value: "", desc: "Optionally override (in seconds) the default propagation time for the dns plugins." } - { env_var: "PROPAGATION", env_value: "", desc: "Optionally override (in seconds) the default propagation time for the dns plugins." }
- { env_var: "EMAIL", env_value: "", desc: "Optional e-mail address used for cert expiration notifications (Required for ZeroSSL)." } - { env_var: "EMAIL", env_value: "", desc: "Optional e-mail address used for cert expiration notifications (Required for ZeroSSL)." }
- { env_var: "ONLY_SUBDOMAINS", env_value: "false", desc: "If you wish to get certs only for certain subdomains, but not the main domain (main domain may be hosted on another machine and cannot be validated), set this to `true`" } - { env_var: "ONLY_SUBDOMAINS", env_value: "false", desc: "If you wish to get certs only for certain subdomains, but not the main domain (main domain may be hosted on another machine and cannot be validated), set this to `true`" }
@ -154,6 +154,8 @@ app_setup_block: |
# changelog # changelog
changelogs: changelogs:
- { date: "09.03.23:", desc: "Add Google Domains DNS support, `google-domains`." }
- { date: "02.03.23:", desc: "Set permissions on crontabs during init." }
- { date: "09.02.23:", desc: "[Existing users should update:](https://github.com/linuxserver/docker-swag/blob/master/README.md#updating-configs) proxy.conf, authelia-location.conf and authelia-server.conf - Add Authentik configs, update Authelia configs." } - { date: "09.02.23:", desc: "[Existing users should update:](https://github.com/linuxserver/docker-swag/blob/master/README.md#updating-configs) proxy.conf, authelia-location.conf and authelia-server.conf - Add Authentik configs, update Authelia configs." }
- { date: "06.02.23:", desc: "Add porkbun support back in." } - { date: "06.02.23:", desc: "Add porkbun support back in." }
- { date: "21.01.23:", desc: "Unpin certbot version (allow certbot 2.x). !!BREAKING CHANGE!! We are temporarily removing the certbot porkbun plugin until a new version is released that is compatible with certbot 2.x." } - { date: "21.01.23:", desc: "Unpin certbot version (allow certbot 2.x). !!BREAKING CHANGE!! We are temporarily removing the certbot porkbun plugin until a new version is released that is compatible with certbot 2.x." }

4
root/defaults/dns-conf/google-domains.ini Normal file
View File

@ -0,0 +1,4 @@
# Instructions: https://github.com/aaomidi/certbot-dns-google-domains#credentials
# Replace with your value
dns_google_domains_access_token = abcdef
dns_google_domains_zone = example.com

2
root/defaults/dns-conf/netcup.ini
View File

@ -1,3 +1,5 @@
# Recommended PROPAGATION value in environment for netcup is 900
dns_netcup_customer_id = 123456 dns_netcup_customer_id = 123456
dns_netcup_api_key = 0123456789abcdef0123456789abcdef01234567 dns_netcup_api_key = 0123456789abcdef0123456789abcdef01234567
dns_netcup_api_password = abcdef0123456789abcdef01234567abcdef0123 dns_netcup_api_password = abcdef0123456789abcdef01234567abcdef0123

4
root/defaults/dns-conf/route53.ini
View File

@ -1,5 +1,5 @@
# Instructions: https://github.com/certbot/certbot/blob/master/certbot-dns-route53/certbot_dns_route53/__init__.py#L18 # Instructions: https://github.com/certbot/certbot/blob/master/certbot-dns-route53/certbot_dns_route53/__init__.py#L18
# Replace with your values # Replace with your values
[default] [default]
aws_access_key_id=AKIAIOSFODNN7EXAMPLE ; aws_access_key_id=AKIAIOSFODNN7EXAMPLE
aws_secret_access_key=wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY ; aws_secret_access_key=wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY

2
root/etc/s6-overlay/s6-rc.d/init-certbot-config/run
View File

@ -24,7 +24,7 @@ for i in "${SANED_VARS[@]}"; do
done done
# check to make sure DNSPLUGIN is selected if dns validation is used # check to make sure DNSPLUGIN is selected if dns validation is used
if [[ "${VALIDATION}" = "dns" ]] && [[ ! "${DNSPLUGIN}" =~ ^(acmedns|aliyun|azure|cloudflare|cpanel|desec|digitalocean|directadmin|dnsimple|dnsmadeeasy|dnspod|do|domeneshop|duckdns|dynu|gandi|gehirn|godaddy|google|he|hetzner|infomaniak|inwx|ionos|linode|loopia|luadns|netcup|njalla|nsone|ovh|porkbun|rfc2136|route53|sakuracloud|standalone|transip|vultr)$ ]]; then if [[ "${VALIDATION}" = "dns" ]] && [[ ! "${DNSPLUGIN}" =~ ^(acmedns|aliyun|azure|cloudflare|cpanel|desec|digitalocean|directadmin|dnsimple|dnsmadeeasy|dnspod|do|domeneshop|duckdns|dynu|gandi|gehirn|godaddy|google|google-domains|he|hetzner|infomaniak|inwx|ionos|linode|loopia|luadns|netcup|njalla|nsone|ovh|porkbun|rfc2136|route53|sakuracloud|standalone|transip|vultr)$ ]]; then
echo "Please set the DNSPLUGIN variable to a valid plugin name. See docker info for more details." echo "Please set the DNSPLUGIN variable to a valid plugin name. See docker info for more details."
sleep infinity sleep infinity
fi fi

50
root/etc/s6-overlay/s6-rc.d/init-crontabs-config/run
View File

@ -1,30 +1,38 @@
#!/usr/bin/with-contenv bash #!/usr/bin/with-contenv bash
# shellcheck shell=bash # shellcheck shell=bash
# if root crontabs do not exist in config # make folders
# copy root crontab from system mkdir -p \
if [[ ! -f /config/crontabs/root ]] && crontab -l -u root; then /config/crontabs
crontab -l -u root >/config/crontabs/root
fi
# if root crontabs still do not exist in config (were not copied from system) ## root
# copy root crontab from included defaults # if crontabs do not exist in config
if [[ ! -f /config/crontabs/root ]]; then if [[ ! -f /config/crontabs/root ]]; then
cp /etc/crontabs/root /config/crontabs/ # copy crontab from system
fi if crontab -l -u root; then
crontab -l -u root >/config/crontabs/root
fi
# if abc crontabs do not exist in config # if crontabs still do not exist in config (were not copied from system)
# copy abc crontab from system # copy crontab from included defaults (using -n, do not overwrite an existing file)
if [[ ! -f /config/crontabs/abc ]] && crontab -l -u abc; then cp -n /etc/crontabs/root /config/crontabs/
crontab -l -u abc >/config/crontabs/abc
fi fi
# set permissions and import user crontabs
# if abc crontabs still do not exist in config (were not copied from system) lsiown root:root /config/crontabs/root
# copy abc crontab from included defaults
if [[ ! -f /config/crontabs/abc ]]; then
cp /etc/crontabs/abc /config/crontabs/
fi
# import user crontabs
crontab -u root /config/crontabs/root crontab -u root /config/crontabs/root
## abc
# if crontabs do not exist in config
if [[ ! -f /config/crontabs/abc ]]; then
# copy crontab from system
if crontab -l -u abc; then
crontab -l -u abc >/config/crontabs/abc
fi
# if crontabs still do not exist in config (were not copied from system)
# copy crontab from included defaults (using -n, do not overwrite an existing file)
cp -n /etc/crontabs/abc /config/crontabs/
fi
# set permissions and import user crontabs
lsiown abc:abc /config/crontabs/abc
crontab -u abc /config/crontabs/abc crontab -u abc /config/crontabs/abc