diff --git a/changes-entries/alias-preserve-path.txt b/changes-entries/alias-preserve-path.txt new file mode 100644 index 00000000000..30eb4df3816 --- /dev/null +++ b/changes-entries/alias-preserve-path.txt @@ -0,0 +1,3 @@ + *) mod_alias: Add AliasPreservePath directive to map the full + path after the alias in a location. [Graham Leggett] + diff --git a/changes-entries/md_v2.4.23.txt b/changes-entries/md_v2.4.23.txt new file mode 100644 index 00000000000..736e0c5c684 --- /dev/null +++ b/changes-entries/md_v2.4.23.txt @@ -0,0 +1,14 @@ + * mod_md: + - New directive `MDMatchNames all|servernames` to allow more control over how + MDomains are matched to VirtualHosts. + - New directive `MDChallengeDns01Version`. Setting this to `2` will provide + the command also with the challenge value on `teardown` invocation. In version + 1, the default, only the `setup` invocation gets this parameter. + Refs #312. Thanks to @domrim for the idea. + - For Managed Domain in "manual" mode, the checks if all used ServerName and + ServerAlias are part of the MDomain now reports a warning instead of an error + (AH10040) when not all names are present. + - MDChallengeDns01 can now be configured for individual domains. + Using PR from Jérôme Billiras (@bilhackmac) and adding test case and fixing proper working + - Fixed a bug found by Jérôme Billiras (@bilhackmac) that caused the challenge + teardown not being invoked as it should. diff --git a/docs/log-message-tags/next-number b/docs/log-message-tags/next-number index ab2acdaf2df..6cea8e27cd7 100644 --- a/docs/log-message-tags/next-number +++ b/docs/log-message-tags/next-number @@ -1 +1 @@ -10473 +10474 diff --git a/docs/manual/mod/mod_alias.xml b/docs/manual/mod/mod_alias.xml index 3ca3a7f0495..463c1eddf8c 100644 --- a/docs/manual/mod/mod_alias.xml +++ b/docs/manual/mod/mod_alias.xml @@ -194,6 +194,24 @@ Alias "/image" "/ftp/pub/image" </LocationMatch> +
Note that when the
When using the two parameter version of the
+
To make the one parameter version of the
+
Define a program to be called when the `dns-01` challenge needs to be setup/torn down.
The program is given the argument `setup` or `teardown` followed by the domain name.
- For `setup` the challenge content is additionally given.
+ For `setup` the challenge content is additionally given. When
+
You do not need to specify this, as long as a 'http:' or 'https:' challenge
method is possible. However, Let's Encrypt makes 'dns-01' the only
@@ -1462,4 +1464,52 @@ MDMessageCmd /etc/apache/md-message
+
+ Set the way MDChallengeDns01 command is invoked, e.g the number and
+ types of arguments. See
+ The mode `all` is the behaviour as in all previous versions. Both ServerName
+ and ServerAlias are inspected to find the MDomain matching a VirtualHost.
+ This automatically detects coverage, even when you only have added
+ one of the names to an MDomain.
+
+ However, this auto-magic has drawbacks in more complex setups. If you set
+ this directive to `servernames`, only the ServerName of a virtual host is
+ used for matching. ServerAliases are disregarded then, for matching.
+ Aliases will still be added to the certificate obtained, unless you also
+ run `MDMembers manual`.
+
+ Another advantage of `servernames` is that it gives you more flexibility
+ with sub-domains and wildcards. You can define one MDomain with a wildcard
+ and have other MDomains for specific sub-domain names.
+