acme.sh icon indicating copy to clipboard operation
acme.sh copied to clipboard

Published 20 hours ago verified publisher icon acmesh-official

Add --verify-server option

Open blry opened this issue 5 years ago • 2 comments

Add --verify-server option which is used to force to renew a cert when ACME Directory Resource URI changes.

blry avatar Jan 02 '20 11:01 blry

why need this ?

Neilpang avatar Jan 02 '20 15:01 Neilpang

I'll describe my case. We have an instance with CI/CD setup, and we don't have access using ssh. There's a shell script in Docker which runs every 6hours acme.sh with environment option for acme directory (e.g. $TESTING_ACME equals to --testing) to check if the certificate needs renew. In some time we decided to use real certificate, however when we disabled TESTING_ACME variable to generate certificate with real CA, it responded that actual certificate renew will be in a month.

Theoretically there was an option to make a commit with acme.sh --force and then reverse it, but it's not a good practice

blry avatar Jan 02 '20 21:01 blry