diff --git a/letsencrypt.js b/letsencrypt.js index 13e58421..a363617e 100644 --- a/letsencrypt.js +++ b/letsencrypt.js @@ -186,6 +186,7 @@ module.exports.CreateLetsEncrypt = function (parent) { csr, email: obj.parent.config.letsencrypt.email, termsOfServiceAgreed: true, + skipChallengeVerification: (obj.parent.config.letsencrypt.skipchallengeverification === true), challengeCreateFn, challengeRemoveFn }).then(function (cert) { diff --git a/meshcentral-config-schema.json b/meshcentral-config-schema.json index 750754a2..7e4603d7 100644 --- a/meshcentral-config-schema.json +++ b/meshcentral-config-schema.json @@ -858,6 +858,7 @@ "properties": { "email": { "type": "string", "format": "email", "description": "Email address of the administrator of this server. Make sure this is a valid email address otherwise the certificate request will fail." }, "names": { "type": "string" }, + "skipChallengeVerification": { "type": "boolean", "default": false, "description": "By default, MeshCentral will perform a self-test to make sure HTTP port 80 can respond correctly before making a request to Let's Encrypt. In some cases, this self-test can't work and must be skipped." }, "production": { "type": "boolean", "default": false, "description": "By default a test certificate will be obtained from Let's Encrypt. Always start by getting a test certificate and make sure that works before setting this to true and obtaining a production certificaite. Making too many bad requests for a production certificate will get you banned for a long period of time." } }, "required": [ "email", "names" ] diff --git a/sample-config-advanced.json b/sample-config-advanced.json index e104cda1..6d6f08fb 100644 --- a/sample-config-advanced.json +++ b/sample-config-advanced.json @@ -442,6 +442,7 @@ "__comment__": "Requires NodeJS 8.x or better, Go to https://letsdebug.net/ first before trying Let's Encrypt.", "email": "myemail@myserver.com", "names": "myserver.com,customer1.myserver.com", + "skipChallengeVerification": false, "production": false }, "_peers": {