New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add preferred chain option #42
Comments
Hi, I prefer having a configuration in It sounds nice to have one-off option in PR is welcomed! |
Agree that the config should be in Another use case of this feature is to stay on the old chain after the switch. Proposed format in preferred_chains:
- root: "ISRG Root X1" #or root_certificate ?
### Filter (optional)
filter:
subject_name_exact:
- my-app.example.com
subject_name_suffix:
- .example.org
subject_name_regexp:
- '\Aapp\d+.example.org\z' |
Nice. I'd name |
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. |
Purpose
LE is switching to ISRG root on January 11, 2021 1. It'll be handy if we can have an option to test the new chain before that date.
Certbot have the
--preferred-chain
option that can specify the chain of the certs. 2 3Changes
Add a
preferred-chain
option in eitherorder
command or inacmesmith.yaml
I'd like to submit a PR after we decided which approach we want.
The text was updated successfully, but these errors were encountered: