Upgrade Certbot (v1.31.0 -> v2.0.0) and switch to new default key type (ecdsa)
More details about the new key type can be found here: https://eff-certbot.readthedocs.io/en/stable/using.html#rsa-and-ecdsa-keys Existing RSA-based keys will continue to renew as RSA until manual action is taken. Example from the documentation above: > certbot renew --key-type ecdsa --cert-name example.com --force-renewal In the future, we may add a command which does this automatically for all domains.
This commit is contained in:
parent
81054bb19c
commit
5b26647127
|
@ -554,7 +554,7 @@ matrix_ssl_lets_encrypt_staging: false
|
||||||
# Learn more here: https://eff-certbot.readthedocs.io/en/stable/using.html#changing-the-acme-server
|
# Learn more here: https://eff-certbot.readthedocs.io/en/stable/using.html#changing-the-acme-server
|
||||||
matrix_ssl_lets_encrypt_server: ''
|
matrix_ssl_lets_encrypt_server: ''
|
||||||
|
|
||||||
matrix_ssl_lets_encrypt_certbot_docker_image: "{{ matrix_container_global_registry_prefix }}certbot/certbot:{{ matrix_ssl_architecture }}-v1.31.0"
|
matrix_ssl_lets_encrypt_certbot_docker_image: "{{ matrix_container_global_registry_prefix }}certbot/certbot:{{ matrix_ssl_architecture }}-v2.0.0"
|
||||||
matrix_ssl_lets_encrypt_certbot_docker_image_force_pull: "{{ matrix_ssl_lets_encrypt_certbot_docker_image.endswith(':latest') }}"
|
matrix_ssl_lets_encrypt_certbot_docker_image_force_pull: "{{ matrix_ssl_lets_encrypt_certbot_docker_image.endswith(':latest') }}"
|
||||||
matrix_ssl_lets_encrypt_certbot_standalone_http_port: 2402
|
matrix_ssl_lets_encrypt_certbot_standalone_http_port: 2402
|
||||||
matrix_ssl_lets_encrypt_support_email: ~
|
matrix_ssl_lets_encrypt_support_email: ~
|
||||||
|
@ -567,8 +567,8 @@ matrix_ssl_lets_encrypt_support_email: ~
|
||||||
matrix_ssl_lets_encrypt_container_standalone_http_host_bind_port: '80'
|
matrix_ssl_lets_encrypt_container_standalone_http_host_bind_port: '80'
|
||||||
|
|
||||||
# Specify key type of the private key algorithm.
|
# Specify key type of the private key algorithm.
|
||||||
# Learn more here: https://eff-certbot.readthedocs.io/en/stable/using.html#using-ecdsa-keys
|
# Learn more here: https://eff-certbot.readthedocs.io/en/stable/using.html#rsa-and-ecdsa-keys
|
||||||
matrix_ssl_lets_encrypt_key_type: rsa
|
matrix_ssl_lets_encrypt_key_type: ecdsa
|
||||||
|
|
||||||
matrix_ssl_base_path: "{{ matrix_base_data_path }}/ssl"
|
matrix_ssl_base_path: "{{ matrix_base_data_path }}/ssl"
|
||||||
matrix_ssl_config_dir_path: "{{ matrix_ssl_base_path }}/config"
|
matrix_ssl_config_dir_path: "{{ matrix_ssl_base_path }}/config"
|
||||||
|
|
Loading…
Reference in a new issue