janeczku · asdek · Jun 10, 2018 · Sep 7, 2018
diff --git a/VERSION b/VERSION
@@ -1 +1 @@
-v0.5.0
+v1.0.0
diff --git a/letsencrypt/client.go b/letsencrypt/client.go
@@ -13,12 +13,13 @@ import (
 
 	"github.com/Sirupsen/logrus"
 	lego "github.com/xenolf/lego/acme"
+	loge "github.com/xenolf/lego/log"
 )
 
 const (
 	StorageDir       = "/etc/letsencrypt"
-	ProductionApiUri = "https://acme-v01.api.letsencrypt.org/directory"
-	StagingApiUri    = "https://acme-staging.api.letsencrypt.org/directory"
+	ProductionApiUri = "https://acme-v02.api.letsencrypt.org/directory"
+	StagingApiUri    = "https://acme-staging-v02.api.letsencrypt.org/directory"
 )
 
 type KeyType string
@@ -97,23 +98,16 @@ func NewClient(email string, kt KeyType, apiVer ApiVersion, dnsResolvers []strin
 		return nil, fmt.Errorf("Could not create client: %v", err)
 	}
 
-	lego.Logger = log.New(ioutil.Discard, "", 0)
+	loge.Logger = log.New(ioutil.Discard, "", 0)
 
 	if acc.Registration == nil {
 		logrus.Infof("Creating Let's Encrypt account for %s", email)
-		reg, err := client.Register()
+		reg, err := client.Register(true)
 		if err != nil {
 			return nil, fmt.Errorf("Failed to register account: %v", err)
 		}
 
 		acc.Registration = reg
-		if acc.Registration.Body.Agreement == "" {
-			err = client.AgreeToTOS()
-			if err != nil {
-				return nil, fmt.Errorf("Could not agree to TOS: %v", err)
-			}
-		}
-
 		err = acc.Save()
 		if err != nil {
 			logrus.Errorf("Could not save account data: %v", err)
@@ -133,9 +127,9 @@ func NewClient(email string, kt KeyType, apiVer ApiVersion, dnsResolvers []strin
 	}
 
 	if challenge == lego.DNS01 {
-		client.ExcludeChallenges([]lego.Challenge{lego.HTTP01, lego.TLSSNI01})
+		client.ExcludeChallenges([]lego.Challenge{lego.HTTP01})
 	} else if challenge == lego.HTTP01 {
-		client.ExcludeChallenges([]lego.Challenge{lego.TLSSNI01, lego.DNS01})
+		client.ExcludeChallenges([]lego.Challenge{lego.DNS01})
 	}
 
 	if len(dnsResolvers) > 0 {
@@ -153,20 +147,21 @@ func NewClient(email string, kt KeyType, apiVer ApiVersion, dnsResolvers []strin
 func (c *Client) EnableLogs() {
 	logger := logrus.New()
 	logger.Out = os.Stdout
-	lego.Logger = log.New(logger.Writer(), "", 0)
+	loge.Logger = log.New(logger.Writer(), "", 0)
 }
 
 // Issue obtains a new SAN certificate from the Lets Encrypt CA
-func (c *Client) Issue(certName string, domains []string) (*AcmeCertificate, map[string]error) {
-	certRes, failures := c.client.ObtainCertificate(domains, true, nil, false)
-	if len(failures) > 0 {
-		return nil, failures
+func (c *Client) Issue(certName string, domains []string) (*AcmeCertificate, error) {
+	certRes, err := c.client.ObtainCertificate(domains, true, nil, false)
+	if err != nil {
+		return nil, err
 	}
 
 	dnsNames := dnsNamesIdentifier(domains)
 	acmeCert, err := c.saveCertificate(certName, dnsNames, certRes)
 	if err != nil {
 		logrus.Fatalf("Error saving certificate '%s': %v", certName, err)
+		return nil, err
 	}
 
 	return acmeCert, nil
@@ -261,7 +256,7 @@ func (c *Client) loadCertificateByName(certName string) (AcmeCertificate, error)
 	return acmeCert, nil
 }
 
-func (c *Client) saveCertificate(certName, dnsNames string, certRes lego.CertificateResource) (*AcmeCertificate, error) {
+func (c *Client) saveCertificate(certName, dnsNames string, certRes *lego.CertificateResource) (*AcmeCertificate, error) {
 	expiryDate, err := lego.GetPEMCertExpiration(certRes.Certificate)
 	if err != nil {
 		return nil, fmt.Errorf("Failed to read certificate expiry date: %v", err)
@@ -272,7 +267,7 @@ func (c *Client) saveCertificate(certName, dnsNames string, certRes lego.Certifi
 	}
 
 	acmeCert := AcmeCertificate{
-		CertificateResource: certRes,
+		CertificateResource: *certRes,
 		ExpiryDate:          expiryDate,
 		SerialNumber:        serialNumber,
 		DnsNames:            dnsNames,

diff --git a/manager.go b/manager.go
@@ -73,11 +73,9 @@ func (c *Context) startup() {
 
 	logrus.Infof("Trying to obtain SSL certificate (%s) from Let's Encrypt %s CA", strings.Join(c.Domains, ","), c.Acme.ApiVersion())
 
-	acmeCert, failures := c.Acme.Issue(c.CertificateName, c.Domains)
-	if len(failures) > 0 {
-		for k, v := range failures {
-			logrus.Errorf("[%s] Error obtaining certificate: %s", k, v.Error())
-		}
+	acmeCert, err = c.Acme.Issue(c.CertificateName, c.Domains)
+	if err != nil {
+		logrus.Errorf("[%s] Error obtaining certificate: %s", err, err.Error())
 		os.Exit(1)
 	}
 

diff --git a/package/Dockerfile b/package/Dockerfile
@@ -2,7 +2,7 @@ FROM alpine:3.5
 
 RUN apk add --no-cache ca-certificates openssl bash
 
-ENV LETSENCRYPT_RELEASE v0.5.0
+ENV LETSENCRYPT_RELEASE v1.0.0
 ENV SSL_SCRIPT_COMMIT 08278ace626ada71384fc949bd637f4c15b03b53
 
 RUN wget -O /usr/bin/update-rancher-ssl https://raw.githubusercontent.com/rancher/rancher/${SSL_SCRIPT_COMMIT}/server/bin/update-rancher-ssl && \

diff --git a/vendor.conf b/vendor.conf
@@ -1,28 +1,26 @@
 # package
 github.com/janeczku/rancher-letsencrypt
 
-github.com/aws/aws-sdk-go							v1.8.6
-github.com/Azure/azure-sdk-for-go					v10.0.2-beta
-github.com/Azure/go-autorest						v8.0.0
-github.com/dgrijalva/jwt-go							6c8dedd
-github.com/dnsimple/dnsimple-go						5a5b427
-github.com/edeckers/auroradnsclient					8b777c1
-github.com/go-ini/ini								e7fea39
-github.com/google/go-querystring					53e6ce1
-github.com/gorilla/websocket						a91eba7
-github.com/JamesClonk/vultr							1.13.0
-github.com/jmespath/go-jmespath						bd40a43
-github.com/juju/ratelimit							77ed1c8
-github.com/miekg/dns								f282f80
-github.com/ovh/go-ovh								d220717
-github.com/pkg/errors								c605e28
-github.com/rancher/go-rancher/v2					939fd85
-github.com/Sirupsen/logrus							v0.11.5
-github.com/xenolf/lego								aaa8e70
-golang.org/x/crypto									ab89591
-golang.org/x/net									84f0e6f
-golang.org/x/sys									f845067
-golang.org/x/text									767daa1
-gopkg.in/ini.v1										e7fea39
-gopkg.in/ns1/ns1-go.v2								c563826
-gopkg.in/square/go-jose.v1							aa2e30f
+github.com/aws/aws-sdk-go						v1.14.3
+github.com/Azure/azure-sdk-for-go				v17.3.0
+github.com/Azure/go-autorest					v10.10.0
+github.com/dgrijalva/jwt-go						6c8dedd
+github.com/dnsimple/dnsimple-go					5a5b427
+github.com/edeckers/auroradnsclient				8b777c1
+github.com/go-ini/ini							e7fea39
+github.com/google/go-querystring				53e6ce1
+github.com/gorilla/websocket					a91eba7
+github.com/JamesClonk/vultr						1.13.0
+github.com/jmespath/go-jmespath					bd40a43
+github.com/juju/ratelimit						77ed1c8
+github.com/miekg/dns							f282f80
+github.com/ovh/go-ovh							d220717
+github.com/pkg/errors							c605e28
+github.com/rancher/go-rancher/v2				939fd85
+github.com/Sirupsen/logrus						v1.0.5
+github.com/xenolf/lego							7fedfd1
+golang.org/x/crypto								ab89591
+golang.org/x/sys								f845067
+gopkg.in/ini.v1									e7fea39
+gopkg.in/ns1/ns1-go.v2							c563826
+gopkg.in/square/go-jose.v2						v2.1.6
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/.gitignore b/vendor/github.com/Azure/azure-sdk-for-go/.gitignore
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/.travis.yml b/vendor/github.com/Azure/azure-sdk-for-go/.travis.yml