blob: 3dd34dc011b718d917463796c825cc83e330a0f2 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
|
# Config on per-certificate base
dehydrated allows a few configuration variables to be set on a per-certificate base.
To use this feature create a `config` file in the certificates output directory (e.g. `certs/example.org/config`).
Currently supported options:
- PRIVATE_KEY_RENEW
- PRIVATE_KEY_ROLLOVER
- KEY_ALGO
- KEYSIZE
- OCSP_MUST_STAPLE
- OCSP_FETCH
- OCSP_DAYS
- CHALLENGETYPE
- HOOK
- HOOK_CHAIN
- WELLKNOWN
- OPENSSL_CNF
- RENEW_DAYS
- PREFERRED_CHAIN
## DOMAINS_D
If `DOMAINS_D` is set, dehydrated will use it for your per-certificate configurations.
Instead of `certs/example.org/config` it will look for a configuration under `DOMAINS_D/example.org`.
If an alias is set, it will be used instead of the primary domain name.
|
