Version 2.2

• Dependencies Version Updates
• Fixed generated nonces are now stored properly (Issue #62)

v2.1

What's Changed

• Frontend Updates
  • Removed JTE (Server Side Rendering) for Web UI
  • Removed legacy CA download page --> Download CA using direct link
  • Use NuxtJS for WebUI
  • No CDN resources more needed for UI to display
  • Troubleshooting Options
    • DNS Query tester
• Backend Updates:
  • Configuration scheme for Proxy and Networking changed, see documentation
  • Custom DNS Server support and DNS over HTTPS support added
  • Usage of proxy is now fully used by ACME Server for all web requests (HTTP-Challenge or Version Check, ...)
  • Dedicated HTTP Access Log configurable with nginx like syntax. See documentation for more details
• API
  • Swagger and OpenAPI support (beta), on /swagger URL
  • Reimplemented API
• ACME Protocol
  • Support for notAfter property in new-order Endpoint, thanks to @Gabanna
• Dependency Updates
  • org.hibernate.orm:hibernate-core 6.4.5.Final to 6.5.1.Final
  • io.javalin:javalin from 6.1.3 to 6.1.6
  • com.github.spotbugs:spotbugs-annotations from 4.8.4 to 4.8.5.

⚠Breaking change in configuration layout if you came from previous version. Please check documentation!

New Contributors

• @Gabanna made their first contribution in #58

Full Changelog: v2.0.1...v2.1

v2.0.1

What's Changed

• [Snyk] Upgrade org.hibernate.orm:hibernate-core from 6.4.4.Final to 6.4.5.Final by @morihofi in #53
• [Snyk] Upgrade org.slf4j:jul-to-slf4j from 2.0.12 to 2.0.13 by @morihofi in #52
• [Snyk] Upgrade jakarta.interceptor:jakarta.interceptor-api from 2.1.0 to 2.2.0 by @morihofi in #51
• [Snyk] Upgrade com.github.spotbugs:spotbugs-annotations from 4.8.3 to 4.8.4 by @morihofi in #50

Full Changelog: v2.0...v2.0.1

v2.0

What's Changed

• [Snyk] Fix for 1 vulnerabilities by @morihofi in #49
• [Snyk] Security upgrade org.bouncycastle:bcpkix-jdk18on from 1.77 to 1.78.1 by @morihofi in #48
• Database reconnect no longer fails
• Better documentation

Full Changelog: v2.0-rc2...v2.0

v2.0-rc2

What's Changed

• [Snyk] Upgrade org.bitbucket.b_c:jose4j from 0.9.5 to 0.9.6 by @morihofi in #46
• [Snyk] Upgrade org.apache.logging.log4j:log4j-slf4j2-impl from 2.23.0 to 2.23.1 by @morihofi in #45
• [Snyk] Upgrade org.apache.logging.log4j:log4j-core from 2.23.0 to 2.23.1 by @morihofi in #44
• [Snyk] Upgrade org.apache.logging.log4j:log4j-api from 2.23.0 to 2.23.1 by @morihofi in #43
• removed org.json dependency
• Moved code from Database class into its identifiers for better code cleanness
• built-in support for Mozilla's SSL Config JSONs
• *.cab CA download support for legacy Windows Mobile 5+ devices
• Legacy CA download page for legacy user agents (IE 9 and older, incl. Pocket PC); Must be used with Mozilla's old ssl config and enabled allowLegacyResumption in configuration to access web UI using https
• Database connection pool is now only in debug mode disabled
• IP issuing support can now be manually enabled/disabled for a provisioner
• Better error message when a IP Address has been used in an dns-identifier instead of an ip-identifier
• Logger in classes is now private and final everywhere and has been renamed from log to LOG

Full Changelog: v2.0-rc1...v2.0-rc2

v2.0-rc1

What's Changed

• [Snyk] Upgrade org.eclipse.angus:angus-mail from 2.0.1 to 2.0.3 by @morihofi in #42
• [Snyk] Upgrade gg.jte:jte from 2.2.1 to 2.3.2 by @morihofi in #41
• fixed update available badge always visible
• faster statistics loading incl. interactive charts
• more efficient CRL generation and certificate expiration/renew watcher
• Database connection pooling
• Database connection jdbc url is now in configuration file → will be automatically migrated
• PostgreSQL database is now officially tested and supported (most recent version)

Full Changelog: v2.0-rc0...v2.0-rc1

v2.0-rc0

What's Changed

• [Snyk] Upgrade org.bitbucket.b_c:jose4j from 0.9.4 to 0.9.5 by @morihofi in #37
• [Snyk] Upgrade org.apache.logging.log4j:log4j-core from 2.22.1 to 2.23.0 by @morihofi in #40
• [Snyk] Upgrade org.apache.logging.log4j:log4j-slf4j2-impl from 2.22.1 to 2.23.0 by @morihofi in #39
• [Snyk] Upgrade org.apache.logging.log4j:log4j-api from 2.22.1 to 2.23.0 by @morihofi in #38
• new interactive WebUI (management UI is coming soon)
• better Database design
• certificates can now be issued in a separate thread
• IP support works now (IPv4 and IPv6)
• error messages of failed challenges are now more informative
• multiple Domains in one order works now
• fixed challenges not working
• fixed several security issues
• enable/disable SNI check in config
• AcmeAPI Certificate doesn't need a provisioner anymore

⚠ Breaking Changes - Version 2.0-rc0

• Provisioner directory is now in /acme/provisionername/directory
• Database scheme has been complete rebuilt, please clean database before use
• Due to move of provisioner directory, the URLs to OCSP and CRL have also been moved, please regenerate your intermediate certificates by delete the corresponding entries in the keystore

Full Changelog: v1.3...v2.0-rc0

v1.3

What's Changed

• [Snyk] Upgrade org.mariadb.jdbc:mariadb-java-client from 3.3.2 to 3.3.3 by @morihofi in #35
• [Snyk] Upgrade org.hibernate:hibernate-core from 6.4.3.Final to 6.4.4.Final by @morihofi in #34
• Upgrade Javalin to 6.1.3
• Fix compatibility issues with win-acme
• Fix no verbose Hibernate SQL anymore (can be toggled on manually in next release)
• Add debug mode
• Fix return ready (instead of valid) when all ACME Identifiers are validated and ready to submit CSR. This is RFC 8555 compliant

Full Changelog: v1.2.3...v1.3

v1.2.3

What's Changed

• [Snyk] Upgrade org.slf4j:jul-to-slf4j from 2.0.11 to 2.0.12 by @morihofi in #30
• [Snyk] Upgrade com.googlecode.lanterna:lanterna from 3.1.1 to 3.1.2 by @morihofi in #29
• [Snyk] Upgrade org.hibernate:hibernate-core from 6.4.2.Final to 6.4.3.Final by @morihofi in #28
• Add beta support for IP Identifier Validation Extension specified in (RFC 8738)

Full Changelog: v.1.2.2...v.1.2.3

v.1.2.2

What's Changed

Update Dependencies

Full Changelog: v1.2.1...v.1.2.2