lego is an independent, free, and open-source project, if you value it, consider supporting it! ❤️
Everybody thinks that the others will donate, but in the end, nobody does.
So if you think that lego is worth it, please consider donating.
For key updates, see the changelog.
You can also read the v5 blog post.
Changelog
- 9603261 Add DNS provider for 51DNS (#3007)
- 7dd4af2 Add DNS provider for Abion (#2112)
- e3af5b4 Add DNS provider for Curanet, DanDomain, ScanNet, Wannafind (#2772)
- 510f95b Add DNS provider for DNS.services and Veesp (#3017)
- feee4a4 Add DNS provider for DNScale (#3002)
- eea10e2 Add DNS provider for Dinahosting (#3006)
- 995a39c Add DNS provider for EUsrv (#2778)
- be65ac9 Add DNS provider for Fornex (#3004)
- 3723655 Add DNS provider for Gehirn (#3003)
- bf401eb Add DNS provider for Gname (#3008)
- 4baa905 Add DNS provider for HostUp (#3053)
- 8943d7b Add DNS provider for Katapult (#3009)
- 7919455 Add DNS provider for NGENIX (#3036)
- ff67592 Add DNS provider for NederHost (#3010)
- 2399252 Add DNS provider for PointDNS/PointHQ (#3012)
- 77bdfdf Add DNS provider for Rage4 (#3013)
- d5d9d6d Add DNS provider for Tele3 (#3014)
- 41c095b Add DNS provider for Xinnet (#3015)
- 86aff5c Add DNS provider for Zilore (#3016)
- 922b806 Add DNS provider for dnsla (#3005)
- f4b4737 Add DNS provider for omg.lol (#3011)
- 98e97c5 Merge branch 'master'
- f9455e8 Merge branch 'master'
- 7caae38 Merge branch 'master'
- 09407c6 Merge branch 'master'
- 27affa4 Merge branch 'master'
- 39a4ce6 Merge branch 'master'
- 50c4298 Merge branch 'master'
- 8336972 Merge branch 'master'
- 545276a Merge branch 'master'
- 115bbfa Merge branch 'master'
- 9efd468 artfiles: add server name option (#3049)
- 865ccf0 chore(ari): use doer instead of raw HTTP client (#2894)
- 64eabf5 chore(migration): improve key type guessing (#2893)
- c6d469b conoha,conohav3: remove get token from the constructor (#2892)
- c7518eb docs: add a section about account register (#2986)
- 076d87e docs: add a security note about DNS-PERSIST-01 (#3061)
- b881c7e docs: add references to draft-ietf-acme-dns-persist-00
- a81f2d4 docs: add sponsors section
- 67f24f7 docs: documentation update to lego v5 (#2975)
- 1a00498 docs: fix DNS provider examples (#3043)
- 3e17cd7 docs: improve migration guide (#3026)
- ad8900e docs: improve migration guides (#3055)
- 7502c34 docs: improvements (#3025)
- 1aef29b docs: minor changes
- c80e8dd feat(cfg): add hooks (#2947)
- db96f92 feat(cfg): add options for PFX (#2942)
- 3790dc9 feat(cmd): add account key rollover (#2950)
- 3fe0cfb feat(file): add support for key type by certificate (#2924)
- 30e7a17 feat(http01): case insensitive match domain (#2900)
- 099d236 feat(lib): add Account Key Rollover support (#2887)
- 0af950d feat(lib): disable Common Name by default (#2802)
- ebdc7ef feat: ACME error codes (#2932)
- c2db871 feat: Add support for DNS-PERSIST-01 challenge type (#2871)
- fb594d8 feat: account storage per key type (#2850)
- 1de5be2 feat: add --cert.name flag (#2851)
- 7356771 feat: add GetServerMetadata (#2884)
- de3a0f7 feat: add command related to archives management (#2937)
- b115fbc feat: add experimental support for .env files (#2974)
- 112e1df feat: add logger flags (#2848)
- b234d4c feat: add more metadata to hooks (#2945)
- c8892ee feat: add prefix into ChallengeInfo (#2865)
- 66932a6 feat: add register command (#2831)
- 2f089d3 feat: add server shortcodes (#2837)
- 3b98818 feat: add subcommands to the list subcommand (#2849)
- 8d13f8d feat: add support for context (#2799)
- 8013d0f feat: add support for context (challenges) (#2805)
- c19db7f feat: backup current configuration (#2967)
- 8edf8ec feat: certificates sub command (#2940)
- 4a6e757 feat: change CertificateService and GetRenewalInfo signatures (#2870)
- 57ed0f5 feat: change experimental support for dotenv files (#2981)
- 6a52663 feat: change registar method returns (#2878)
- 7be5648 feat: choose a network stack for challenges (#2832)
- a1f8896 feat: convert SetProxyHeader to an option (#2997)
- dbd1389 feat: define default account only if needed (#2966)
- b770f7d feat: flag names and environment variables (#2847)
- dd80d8b feat: format renewal duration (#2810)
- 1ba2e7d feat: generate configuration file during migration (#2933)
- 42d7ea8 feat: handle account URI inside the challenge (#2879)
- 2ac7053 feat: hook manager (#2901)
- c24105e feat: migrate to urfave/cli v3 (#2806)
- 5f3b252 feat: migration guess server (#2931)
- acff9c4 feat: move enableCommonName option to Request (#2868)
- 5852c46 feat: move revoke command (#2970)
- 2f2f587 feat: new HTTP-01 and TLS-ALPN-01 servers constructors (#2801)
- 8163d55 feat: new approach of the DNS calls (#2803)
- 218ec2c feat: new logger (slog) (#2800)
- 8c77884 feat: one command to run or renew a certificate. (#2935)
- c563181 feat: recover/import an account from the private key (#2936)
- 5fdd508 feat: rename flags tls.port and http.port to tls.address and http.address (#2952)
- ce4e7b0 feat: replace --run-hook and --renew-hook with --deploy-hook (#2825)
- b9622e1 feat: replace
crypto.PrivateKeywithcrypto.Signer(#2888) - 85d174c feat: require EAB parameters only when needed (#2984)
- 07689eb feat: restrict archive process to only accounts and certificates related to the configuration (#2938)
- e6a82ed feat: revert accounts by key type (#2929)
- 6292cde feat: support a configuration file (#2911)
- e76dcf0 feat: update dns-persist-01 implementation to fit the v5 design (#2875)
- fe151ce feat: update draft-ietf-acme-dns-persist-00 support to 01 (#2991)
- 1442a47 feat: use PKCS#8 instead of PKCS#1 (#2954)
- 2bfa88a feat: use the public key corresponding to the opaque (#2899)
- 7f91152 fix(file): default DNS Persist 01 (#2934)
- 84a012d fix: migration without email (#2923)
- 2ca0a44 fix: reject unknown commands (#2976)
- bfce8e9 manual: add PropagationTimeout and PollingInterval options (#2943)
- 948bf62 mijnhost: use single endpoints (#3052)
- e2e4935 refactor(cli): move the main package to the root. (#2836)
- ab4e321 refactor(cli): storage and flags management (#2812)
- 39d5a40 refactor(cmd): replace Fatal with error (#2826)
- 248ca82 refactor(storage): move constructor options to method options (#2833)
- bcd98dd refactor: PFX formats management (#2949)
- c74bcf0 refactor: clean flag names (#2834)
- 925ecb1 refactor: factorize functions related to response headers
- 3570a4c refactor: flag validations
- 405aac3 refactor: homogenization between flags and config (#2941)
- edd764f refactor: improve some log and error messages (#2926)
- d2f3cc4 refactor: isolate flag usages (#2824)
- 317a904 refactor: lazy setup of the client inside the renew command (#2835)
- 0bab771 refactor: move env/wait/tester/ptr packages (#2872)
- fd98dce refactor: one storage structure to handle certificates and accounts (#2928)
- 7c2eaf6 refactor: remove dependency on the ACME client from the account storage. (#2927)
- a6501bf refactor: remove domainError (#2930)
- 9e9a306 refactor: rename JWS to Signer (#2889)
- c400add refactor: rename SolverManager.RemoveAll to SolverManager.ResetSolvers (#3029)
- df8d9b9 refactor: rename some functions (#2968)
- 3dfdeb0 refactor: use duration as RetryAfter field type (#2895)
- c6b429c rfc2136: rename to dnsupdate (#3000)
- 2f42e47 tests: add EAB e2e tests
- 0fecafc tests: fix flaky memcached tests (#2827)
- a4ada75 tests: improve webroot tests (#3027)
- 8a6b557 tests: split e2e tests (http/tls)