721 Commits

Author	SHA1	Message	Date
Curd Becker	355b121c79	Add deployment plugin for Windows RDP via OpenSSH (#6925) ... * Add deployment plugin for Windows RDP via OpenSSH	2026-05-02 10:56:13 +02:00
neil	d00b2722ee	Merge pull request #6889 from achmadalifn4/dev ... Add BytePlus ALB deployment script	2026-04-24 21:46:10 +02:00
Achmad Alif Nasrulloh	e9b0cafac5	Fix byteplus_alb.sh	2026-04-24 11:21:43 +07:00
Antoni Company	9882d534af	fix: commit overhaul (#6915) ... - Removed scope exclusion for "standard commit". - If 'device-and-networks' is excluded (previous behaviour), a certificate for Panorama (always outside of a template) will not be committed (imported to the config but never applied to Panorama). Therefore, panos.sh was only working for certificates used in templates and applied to devices, but not for the Panorama certificate itself. - According to the official documentation and the XML API Browser, there is no 'policy-and-objects' that can be excluded. - Although it is not mandatory that the user account is solely dedicated to replace certificates and to perform no other type of operations, it is recommended. If such recommendation is applied, the only changes being committed would be in relation to certificates. Therefore, it should be safe not to exclude any scopes. - Changed the order for "force commit" from '<commit><partial><force>' (unofficial) to '<commit><force><partial>' (official). Both work, but it is recommended to use what is part of the official documentation and/or XML API Browser. - Removed unofficial 'policy-and-objects' from commented out code (see above). - Replaced 'exclude' with 'excluded' from commented out code, as per the official documentation. Both work, but see above. - Replaced 'acmekeytest' with $_panos_user in the commented out code. Official documentation: https://docs.paloaltonetworks.com/ngfw/api/pan-os-xml-api-request-types-and-actions/commit XML API Browser: https://<PANOS HOST>/api	2026-04-20 11:28:17 +02:00
ACHMAD ALIF NASRULLOH	f89a9a5de3	Add new header variable _H5 in byteplus_alb.sh ... Added a new header variable _H5 to the byteplus_alb.sh script.	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	00090d24b8	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	73a682e561	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	a1b94db94d	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	5c94af86f3	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	3843495397	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	a739bf3e3a	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
Achmad Alif Nasrulloh	75642a1252	Update bteplus_alb.sh	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	668427f285	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	d0e123cb02	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	8587c3e744	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	934870fc77	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	8eea7ca307	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	28f1f07f49	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	ad71a785ec	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	d5c8060a65	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	4178c33524	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	044371b00a	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	86d98b0461	Update deploy/byteplus_alb.sh ... Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2026-04-14 21:04:48 +08:00
ACHMAD ALIF NASRULLOH	6efd6d5b5a	Add BytePlus ALB deployment script ... This script deploys SSL/TLS certificates issued by acme.sh to BytePlus Application Load Balancer (ALB), supporting automatic renewal with zero-downtime certificate rotation.	2026-04-14 21:04:48 +08:00
Mitchell van Bijleveld	f3e61a8ef4	Don't mark restart http as failed if json returns false because it was not restarted (#6906)	2026-04-14 20:37:50 +08:00
Florian Heigl	ef49a9fd23	Update synology_dsm.sh (#6894) ... quote variable name so message isn't missing the variable that needs to be fixed. this was reported in #2727 (feedback for hook)	2026-04-03 11:38:21 +08:00
neil	89c86efc56	Merge pull request #6793 from ecm75/fix_kemplm ... fixed checking for existing domain on loadmaster	2026-02-23 19:37:06 +08:00
Eike-Christian Müller	8ca1c83b95	Fixed missing error return value when certificate upload fails.	2026-02-23 09:24:06 +01:00
infinitydev	bef0fdb1ae	check Proxmox Backup Server API response for errors	2026-02-17 19:28:25 +01:00
infinitydev	020a4bb5b3	check Proxmox VE API response for errors	2026-02-17 12:12:17 +00:00
emueller	acaaca89ab	fixed checking for existing domain on loadmaster	2026-02-17 11:03:53 +01:00
neil	bdfa988b65	Merge pull request #6436 from invario/localcopy-deploy-hook ... Add 'localcopy' deploy-hook	2026-02-14 11:01:40 +08:00
neil	b79146281c	Merge pull request #6767 from dga-nagra/panos-api-key ... Fix bug + Allow panos deploy-hook to use PANOS_KEY	2026-02-07 22:15:28 +08:00
neil	80e39eb63c	Merge pull request #6687 from kapouer/ssh-noscp-permissions ... Ssh noscp permissions	2026-02-04 18:49:52 +08:00
dga-nagra	61e986f23c	Conditionnaly change permissions (#1)	2026-02-04 11:01:44 +01:00
David Gallay	6a60695549	Allowing panos deploy-hook to only depend on PANOS_KEY. ... Previous version add bugs that were not properly using the _api_key. It also enforced to provide PANOS_USER and PANOS_PASSWORD which can be very constraining. PANOS_KEY now has precedence. If not provided, the script falls back to PANOS_USER and PANOS_PASSWORD.	2026-02-03 10:51:42 +01:00
Your Name	2ad984d8ad	feat(qiniu): make forceHttps configurable via environment variable ... Add QINIU_FORCE_HTTPS environment variable (default: false) to allow configuring HTTPS redirect behavior for CDN domains.	2026-01-01 13:26:02 +00:00
invario	4219f7b2f6	align logic to acme.sh installcert(), fix perms on non-key files ... Signed-off-by: invario <67800603+invario@users.noreply.github.com>	2025-12-30 11:41:50 -05:00
invario	e03f8d3ad6	fix: savedeployconf for DEPLOY_LOCALCOPY_CERTIFICATE ... Co-authored-by: Kevin Hoser <45083826+hoser21@users.noreply.github.com>	2025-12-28 12:03:02 -05:00
invario	11cae37405	make compatible with both yq versions ... kislyuk yq (used by Debian packages) does not accept `yq e` and also returns strings with double quotes. mikefarah's yq-go (used by Alpine) accepts `yq e` and `yq`. replace `yq e` with `yq` and also use `-r` switch to remove double quoting to ensure uniform return values from both yq versions. Signed-off-by: invario <67800603+invario@users.noreply.github.com>	2025-12-27 11:02:40 +01:00
tomo	61b59831c4	minor code style adjustments in multideploy script	2025-12-27 11:02:40 +01:00
Jacobo de Vera	96f38655b4	Use file descriptor 3 for main deployment loop ... Before this, some deployment scripts would interact with STDIN and that would cause this loop to skip some elements. By using descriptor 3 we avoid clashing with the very common stdin and stdout.	2025-12-27 11:02:40 +01:00
Jacobo de Vera	ab7835ec58	Fix eval bug by quoting ... Before this, the eval call would try to run some commands (if they were compound commands) in the yaml file on the machine running acme.sh Eval might not be worth it for the little benefit it brings.	2025-12-27 11:02:40 +01:00
Jacobo de Vera	b8b1f1e9b4	Remove config logging when checking ... Because it causes a mysterious crash and it's honestly not worth it.	2025-12-27 11:02:40 +01:00
Jacobo de Vera	6b66e734a9	Remove explicit save of the deployhook ... acme.sh takes care of that	2025-12-27 11:02:40 +01:00
Jacobo de Vera	4f0a4850a6	Remove unnecessary resetting of IFS	2025-12-27 11:02:40 +01:00
Jacobo de Vera	8a78865174	Quote paths to prevent word splitting	2025-12-27 11:02:40 +01:00
Jacobo de Vera	69dd2cf78b	Explain _clear_envs rationale	2025-12-27 11:02:40 +01:00
Jacobo de Vera	a961e03a59	Explain the use of eval	2025-12-27 11:02:40 +01:00
Jacobo de Vera	1d8788767f	Make failure to check file stop the deployment ... Before this, checker issues were only logged. This stops the deployment if any configuration is incorrect.	2025-12-27 11:02:40 +01:00