tisba / fritz-tls Goto Github PK
View Code? Open in Web Editor NEWAutomate TLS certificate installation for AVM FRITZ!Box
Home Page: https://github.com/tisba/fritz-tls/releases/latest
License: MIT License
fritz-tls's Introduction
fritz-tls's People
Contributors
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot]")
![renovate[bot] avatar](https://avatars.githubusercontent.com/in/2740?v=4 "renovate[bot]")
Stargazers
Watchers
fritz-tls's Issues
fritz-tls reported unsuccessful upload but it was successful
fritz-tls output that the TLS certificate upload was not successful - but actually, it worked perfectly. Here's the output from the script:
2021/09/03 14:53:52 TLS certificate upload not successful, check response: <!DOCTYPE html>
<html>
<head>
<meta http-equiv=content-type content="text/html; charset=utf-8" />
<meta http-equiv="X-UA-Compatible" content="IE=edge" />
<meta name="format-detection" content="telephone=no" />
<meta http-equiv="x-rim-auto-match" content="none" />
<meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no, minimal-ui" />
<meta name="mobile-web-app-capable" content="yes" />
<meta name="apple-mobile-web-app-capable" content="yes" />
<meta name="apple-mobile-web-app-status-bar-style" content="black-translucent" />
<meta http-equiv="cleartype" content="on">
<link rel="shortcut icon" type="image/x-icon" href="/favicon.ico" />
<link rel="apple-touch-icon" href="/css/rd/logos/logo_fritzDiamond.png" />
<link rel="apple-touch-startup-image" href="/css/rd/logos/logo_fritzDiamond.png">
<link rel="stylesheet" type="text/css" href="/css/rd/singleside_old.css"/>
<title>FRITZ!Box</title>
<script type="text/javascript" src="/js/post_upload.js"></script>
</head>
<body>
<div id="main_page_all">
<header class="" name="" id="blueBarBox">
<div class="logoBox" name="" id=""></div>
<div class="blue_bar_titel" name="" id="blueBarTitel">FRITZ!Box</div>
<div class="logoBox fake" name="" id=""></div>
</header>
<div id="page_content_no_menu_box">
<div class="blue_bar_back">
<h2>FRITZ!Box</h2>
</div>
<div id="page_content" class="page_content">
<form method="POST" name="mainform" action="/index.lua">
<p>
Import of the SSL certificate was successful.
<br>
</p>
<input type="hidden" name="sid" value="<REMOVED>">
<input type="hidden" id="uiLP" name="lp" value="remoteHttps">
</form>
</div>
<script type="text/javascript">
postUpload.redirect();
</script>
<div class="clear_float"></div>
</div>
</div>
</div>
</body>
</html>
This is on a FritzBox 3490 and
$ ./fritz-tls -version
2021/09/03 16:01:19 fritz-tls 0.8.0 (2021-03-30T18:45:13Z, 8ae4cde1c43ed67971088e5326a75256d71e329c)
Add launchd example to README
More info on LE auto renew
Hi, I don't understand how to handle cert renew automatically, is it possible with this CLI?
Add support for alternative DNS resolvers in lego
Hey there!
Thanks for putting this together!
There is an option in lego that allows for alternative DNS resolvers to be used. This option is not passed through fritz-tls - would it be possible to allow that?
The reason they allow it is to override the local system resolvers to solve the DNS challenge. This would be very helpful to avoid DNS TTL issues - I currently have to have the polling interval set to every couple of minutes, but wait up to 2 hours for propogation to take place.
If I could override the resolvers to point directly to my DNS' providers namesevers, it would speed up the process considerably.
It's referenced in the lego repo here:
https://github.com/go-acme/lego/blob/83c626d9a1889fa499bc9c97bc2fdea965307002/cmd/flags.go#L97-L99
I'm a little confused also because I used https://github.com/kchristensen/udm-le to automate the certificate generation (also uses lego in the backend) for another device, and for some reason lego automatically decided to go to my authoratative nameservers directly to resolve the record. So I'm not 100% sure why that behaviour wasn't matched here - it used my system resolvers instead.
There's references to that in the code hre: https://github.com/go-acme/lego/blob/83c626d9a1889fa499bc9c97bc2fdea965307002/challenge/dns01/precheck.go#L70
https://github.com/go-acme/lego/blob/83c626d9a1889fa499bc9c97bc2fdea965307002/challenge/dns01/nameserver.go#L96-L97
Defaulting `--tls-port` from port in `--host` does not work for validation
$ fritz-tls --auto-cert --email [email protected] --host https://[email protected]:8443
Does seem to work, but tries to validate against https://[email protected]:443. Needs more validation.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.