diff options
author | Guilhem Moulin <guilhem@fripost.org> | 2016-12-05 14:54:28 +0100 |
---|---|---|
committer | Guilhem Moulin <guilhem@fripost.org> | 2016-12-05 16:26:42 +0100 |
commit | bb5efce091215432fd2b82fbf50aff1536d415f6 (patch) | |
tree | 45bb7b1ddcc2e03119d7ea68543f2f1a6dfdf444 /lacme.md | |
parent | 1d1072ac291b1a086d4b15cd611cb74e41667115 (diff) |
"config-certs" now points to a list of files or directories.
Diffstat (limited to 'lacme.md')
-rw-r--r-- | lacme.md | 21 |
1 files changed, 12 insertions, 9 deletions
@@ -151,9 +151,18 @@ Default section *config-certs* : For certificate issuances (`new-cert` command), specify the - certificate configuration file to use (see the **[certificate - configuration file](#certificate-configuration-file)** section below - for the configuration options). + space-separated list of certificate configuration files or + directories to use (see the **[certificate configuration + file](#certificate-configuration-file)** section below for the + configuration options). + + Paths not starting with `/` are relative to the directory name of + the **[configuration filename](#configuration-file)**. The list of + files and directories is processed in order, with the later items + taking precedence. Files in a directory are processed in + lexicographic order, only considering the ones with suffix `.conf`. + + Default: `lacme-certs.conf lacme-certs.d/`. `[client]` section ------------------ @@ -303,12 +312,6 @@ Certificate configuration file For certificate issuances (`new-cert` command), a separate file is used to configure paths to the certificate and key, as well as the subject, subjectAltName, etc. to generate Certificate Signing Requests. -If `--config-certs=` is not given, and if the `config-certs` -configuration option is absent, then `lacme` uses the first existing -configuration file among *./lacme-certs.conf*, -*$XDG_CONFIG_HOME/lacme/lacme-certs.conf* (or -*~/.config/lacme/lacme-certs.conf* if the `XDG_CONFIG_HOME` environment -variable is not set), and */etc/lacme/lacme-certs.conf*. Each section denotes a separate certificate issuance. Valid options are: |