Releases: rmbolger/Posh-ACME
Releases · rmbolger/Posh-ACME
v4.30.1
- Fixed Simply and SimplyCom plugins which now require trailing slashes to API endpoints. (#646) (Thanks @tomsommer)
Contributors
tomsommer
Assets 2
v4.30.0
- New HetznerCloud plugin (#642) (Thanks @humnose)
- This is for Hetzner users who have migrated their zones from the legacy "DNS Console" to the new "Hetzner Console". NOTE: New API tokens are needed.
- Added
AZArcAgentAPIVersionparam for Azure IMDS parameter set (#636) (Thanks @semics-tech)- This may be necessary systems running older versions of the Azure Managed Identity Agent that don't work with the default version identifier.
- Added
ACTALIS_PRODto the list of well-known directory shortcuts. They've also been added to the ACME CA Comparison guide. - Removed
BUYPASS_PRODandBUYPASS_TESTfrom the list of well-known directory shortcuts since they are no longer in operation. - Removed a workaround for a BuyPass server bug which is no longer necessary.
- Fixed Windows plugin breaks when not using WinUseSsl or WinSkipCACheck switches (#637) (Thanks @jmpederson1)
- Fixed PS 5.1 compat with DeSEC and EuroDNSReseller by removing -Depth param from ConvertFrom-Json calls (#643)
- Fixed null ref errors in CoreNetworks plugin when no matching zone found. Added additional debug logs. (#616)
Contributors
humnose, jmpederson1, and semics-tech
Assets 2
v4.29.3
- The current ACME server directory endpoint is now refreshed on module import to ensure server changes are reflected before actions are performed. If the previously used ACME server is unreachable, a warning is thrown and previously cached data is used.
- This should fix anyone who is getting 404 errors when renewing Let's Encrypt certs due to an unannounced change to their ARI endpoint. Users can also fix this problem without upgrading by running
Get-PAServer -Refresh.
- This should fix anyone who is getting 404 errors when renewing Let's Encrypt certs due to an unannounced change to their ARI endpoint. Users can also fix this problem without upgrading by running
v4.29.2
- Fixed param set resolution error with New-PACertificate when using CSRPath/CSRString params (#629)
- Added workaround for non-compliant order response from KeyFactor ACME provider (#626)
- Added additional logging to DuckDNS plugin (#628)
- Tweaked debug output for ACME responses for better human readability
v4.29.1
v4.29.0
- New DNS Plugins
- Added
-IgnoreContactswitch toSet-PAServer(#619)- ALL USERS of LET'S ENCRYPT, this switch works around a bug that causes a new account to be created for every renewal after LE shut down their automated email warning service.
- This option causes the module to ignore any
-Contactparameters in functions that support it when using the associated server. - It will be enabled by default on new installs that use Let's Encrypt. But existing users will need to manually enable it OR simply stop using the
-Contactparameter in your scripts when using Let's Encrypt ACME endpoints.
- Added AZAccessTokenSecure param for Azure plugin (#618)
- Added WinSkipCACheck switch to Windows plugin (#613)
- Added WinNoCimSession switch to Windows plugin (#600) (Thanks @rhochmayr)
- Fix: Changing an order's PfxPass no longer shows the new value in Verbose output (#604)
- Fix: New-PACertificate no longer shows plaintext PfxPass in debug log (#604)
- Fixed a bug in
New-PACertificatethat would unnecessarily create a new order when an existing unfinished order could have been continued - Fixed a couple minor bugs related to switching profiles when creating new orders that match existing orders.
- Fix: Added a workaround for non-compliant order response from GoDaddy's ACME implementation (#611)
- Fixed PowerDNS plugin when using limited API key that doesn't have access to all hosted zones (#617) (Thanks @joachimcarrein)
- Removed the Warning message when creating a new ACME account with no
-Contactparameter.
Contributors
Tim81, joachimcarrein, and rhochmayr
Assets 2
v4.28.0
- New efficient iP SOLIDserver DDI plugin. Thanks @jamiekowalczik for the initial PR and @alexissavin for providing a test platform and API guidance.
- Experimental support for the new ACME Profiles extension. This is still a very early draft standard and subject to change, but Let's Encrypt is already rolling out support this year as part of their short-lived certificates initiative. More info here.
- Fixed Route53 plugin when used with accounts that have many hosted zones. (#593)
- Fixed a bug with DeSEC plugin that was caused by the previous fix for #584. (#598)
- Added better debug logging for DeSEC plugin.
- Azure cert thumbprint auth now works on Linux for certs in the "CurrentUser" store. (Thanks @Eric2XU)
- Fixed a bug with Azure cert thumbprint auth on Windows that could throw errors when using certificates with non-exportable private keys.
- Added better debug logging for Azure plugin.
- AcmeException objects thrown by the module now include the lower level HTTP response exception as an InnerException.
Contributors
jamiekowalczik, Eric2XU, and alexissavin
Assets 2
v4.27.0
- New DNS Plugins
- INWX (Thanks @andreashaerter)
- EuroDNSReseller Check the guide on this one. It's only currently usable by reseller partners of EuroDNS and not direct EuroDNS customers. (Thanks @zoryatix)
- Fixed WEDOS plugin to handle different response types for dns-domains-list API call (#579)
- Publish-Challenge and Unpublish-Challenge now strip trailing
.chars from the RecordName they pass to plugins in order to make edge-case parsing more predictable. - Added additional ARI related error handling in New-PAOrder to more gracefully handle problems with the
replacesfield. (#587) - Added additional error handling in the config import process to better deal with unexpected config states. (#587)
- Fixed a bug in the plugin development guide code that suggests how to parse short names from a RecordName and ZoneName value. The bug wouldn't correctly parse the short name in FQDNs that contained more than one instance of the zone name. (#584)
- Fixed all of the plugins that had implemented the bugged short name parsing algorithm.
- Active24
- Aliyun
- All-Inkl
- Aurora
- AutoDNS
- Azure
- BlueCat
- Bunny
- ClouDNS
- Combell
- Constellix
- CoreNetworks
- DMEasy
- DNSPod
- DNSimple
- DOcean
- DeSEC
- Domeneshop
- EasyDNS
- Easyname
- FreeDNS
- Gandi
- GoDaddy
- Hetzner
- IBMSoftLayer
- ISPConfig
- Infomaniak
- Linode
- Loopia
- NameCom
- NameSilo
- Namecheap
- OVH
- OnlineNet
- PointDNS
- Porkbun
- PortsManagement
- Regru
- Simply
- SimplyCom
- TencentDNS
- TotalUptime
- WEDOS
- WebsupportSK
- Windows
- Yandex
Contributors
andreashaerter and zoryatix
Assets 2
v4.26.0
- New DNS plugin AddrTools (#572)
- Porkbun plugin updated with new API endpoint. Vendor decommissioning old endpoint on 2024-12-01. Please upgrade before then. (#570)
- Porkbun plugin added retry mechanic to deal with rate limiting errors.
- Fixed ARI related date parsing bug when using PowerShell 7+. (#578)