-
Notifications
You must be signed in to change notification settings - Fork 23.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
acme_* modules: deprecate acme_version default, announce that ACME v1 support will be deprecated eventually #61667
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This is a nice improvement overall. I see a few ways it could be made even better.
recheck |
Closing and reopening to see if that kickstarts shippable |
178ac44
to
160b781
Compare
Rebased to remove conflict with merged #61648. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
shipit
… support will be deprecated eventually (ansible#61667)
SUMMARY
Since everyone should use ACME v2 eventually, having
acme_version
default to 1 is not a good idea anyway.I also added an announcement in the
acme_version
documentation that ACME v1 support will eventually be deprecated. Right now, people might still use it, but Let's Encrypt will shut it down eventually (current plan: less than two years from now), and also other CAs should migrate to ACME v2 eventually (assuming that our implementation actually works with their ACME v1 implementation at the moment).ISSUE TYPE
COMPONENT NAME
lib/ansible/module_utils/acme.py
acme_account
acme_account_info
acme_certificate
acme_certificate_revoke
acme_inspect