caddy/caddyconfig
Matthew Holt b6686a54d8
httpcaddyfile: Improve AP logic with OnDemand
We have users that have site blocks like *.*.tld with on-demand TLS
enabled. While *.*.tld does not qualify for a publicly-trusted cert due
to its wildcards, On-Demand TLS does not actually obtain a cert with
those wildcards, since it uses the actual hostname on the handshake.

This improves on that logic, but I am still not 100% satisfied with the
result since I think we need to also check if another site block is more
specific, like foo.example.tld, which might not have on-demand TLS
enabled, and make sure an automation policy gets created before the
more general policy with on-demand...
2020-10-22 12:40:23 -06:00
..
caddyfile caddyfile: Export Tokenize function for lexing (#3549) 2020-07-20 13:55:51 -06:00
httpcaddyfile httpcaddyfile: Improve AP logic with OnDemand 2020-10-22 12:40:23 -06:00
configadapters.go caddyconfig: Minor internal and godoc tweaks 2020-05-29 11:49:25 -06:00
load.go caddyconfig: register adapters as Caddy modules (#3132) 2020-03-21 16:49:10 -06:00