pebble
pebble copied to clipboard
A miniature version of Boulder, Pebble is a small RFC 8555 ACME test server not suited for a production certificate authority.
On my Windows10 machine, I'm using Vagrant and VirtualBox with Ubuntu 18.04 Vagrant box, which has Docker 19.03.5 installed. I have a **docker-compose.yml** which has both pebble and certbot services...
When I first tried to get Pebble running using the binary I downloaded from the releases, it complained about missing files it was looking for. I got it working by...
When I first looked at Pebble, I missed the binary releases and because compiling from Go had an error I abandoned the idea to use it. I suggest adding a...
RFC8555 tells: ```` The CSR MUST indicate the exact same set of requested identifiers as the initial newOrder request. Identifiers of type "dns" MUST appear either in the commonName portion...
If an Authorization has expired, loading it will show a "pending" status. If a Challenge belongs to an Authorization which has expired, loading it will show a "pending" status. Triggering...
I spent the day investigating failing tests, because of a single line in Pebble :( https://github.com/letsencrypt/pebble/blob/master/core/types.go#L66-L69 // An order is deactivated if **any** of its authzs are deactivated if authzStatuses[acme.StatusDeactivated]...
Discussion on https://github.com/letsencrypt/pebble/pull/39 indicated that there are users who would find it valuable to be able to inject test data into Pebble to help support integration testing with an ACME...
Boulder allows configuration of [issued end entity certificate lifetime](https://github.com/letsencrypt/boulder/blob/2131065b2d0393fdbd21a5060c021873f2cb5121/test/config/ca-a.json#L38). Pebble presently hard-codes it: https://github.com/letsencrypt/pebble/blob/0abe0523af6f711c2f4c4a29a3a9a5f91aa9282e/ca/ca.go#L197 [RFC 8555 7.5](https://tools.ietf.org/html/rfc8555#section-7.4) specifies that a new order request may have optional `notBefore` and `notAfter` fields...
For my project I had to set a custom value for `httpPort` in `pebble-config.json`. Currently in my custom JSON I need to specify the rest of the configuration as well:...