[Compose] Update SOGo and ACME
[ACME] SKIP IP check for SNAT'ed setups to workaround race conditionsmaster
andryyy
parent
44f7ca0d61
commit
03f173905e
|
|
@ -66,7 +66,7 @@ check_domain(){
|
||||||
fi
|
fi
|
||||||
if [[ ! -z ${AAAA_DOMAIN} ]]; then
|
if [[ ! -z ${AAAA_DOMAIN} ]]; then
|
||||||
log_f "Found AAAA record for ${DOMAIN}: ${AAAA_DOMAIN} - skipping A record check"
|
log_f "Found AAAA record for ${DOMAIN}: ${AAAA_DOMAIN} - skipping A record check"
|
||||||
if [[ $(expand ${IPV6:-"0000:0000:0000:0000:0000:0000:0000:0000"}) == $(expand ${AAAA_DOMAIN}) ]] || [[ ${SKIP_IP_CHECK} == "y" ]]; then
|
if [[ $(expand ${IPV6:-"0000:0000:0000:0000:0000:0000:0000:0000"}) == $(expand ${AAAA_DOMAIN}) ]] || [[ ${SKIP_IP_CHECK} == "y" ]] || [[ ${SNAT6_TO_SOURCE} != "n" ]]; then
|
||||||
if verify_challenge_path "${DOMAIN}" 6; then
|
if verify_challenge_path "${DOMAIN}" 6; then
|
||||||
log_f "Confirmed AAAA record with IP ${AAAA_DOMAIN}"
|
log_f "Confirmed AAAA record with IP ${AAAA_DOMAIN}"
|
||||||
return 0
|
return 0
|
||||||
|
|
@ -78,7 +78,7 @@ check_domain(){
|
||||||
fi
|
fi
|
||||||
elif [[ ! -z ${A_DOMAIN} ]]; then
|
elif [[ ! -z ${A_DOMAIN} ]]; then
|
||||||
log_f "Found A record for ${DOMAIN}: ${A_DOMAIN}"
|
log_f "Found A record for ${DOMAIN}: ${A_DOMAIN}"
|
||||||
if [[ ${IPV4:-ERR} == ${A_DOMAIN} ]] || [[ ${SKIP_IP_CHECK} == "y" ]]; then
|
if [[ ${IPV4:-ERR} == ${A_DOMAIN} ]] || [[ ${SKIP_IP_CHECK} == "y" ]] || [[ ${SNAT_TO_SOURCE} != "n" ]]; then
|
||||||
if verify_challenge_path "${DOMAIN}" 4; then
|
if verify_challenge_path "${DOMAIN}" 4; then
|
||||||
log_f "Confirmed A record ${A_DOMAIN}"
|
log_f "Confirmed A record ${A_DOMAIN}"
|
||||||
return 0
|
return 0
|
||||||
|
|
|
||||||
|
|
@ -152,7 +152,7 @@ services:
|
||||||
- phpfpm
|
- phpfpm
|
||||||
|
|
||||||
sogo-mailcow:
|
sogo-mailcow:
|
||||||
image: mailcow/sogo:1.72
|
image: mailcow/sogo:1.73
|
||||||
environment:
|
environment:
|
||||||
- DBNAME=${DBNAME}
|
- DBNAME=${DBNAME}
|
||||||
- DBUSER=${DBUSER}
|
- DBUSER=${DBUSER}
|
||||||
|
|
@ -333,7 +333,7 @@ services:
|
||||||
acme-mailcow:
|
acme-mailcow:
|
||||||
depends_on:
|
depends_on:
|
||||||
- nginx-mailcow
|
- nginx-mailcow
|
||||||
image: mailcow/acme:1.69
|
image: mailcow/acme:1.70
|
||||||
dns:
|
dns:
|
||||||
- ${IPV4_NETWORK:-172.22.1}.254
|
- ${IPV4_NETWORK:-172.22.1}.254
|
||||||
environment:
|
environment:
|
||||||
|
|
@ -352,6 +352,8 @@ services:
|
||||||
- TZ=${TZ}
|
- TZ=${TZ}
|
||||||
- REDIS_SLAVEOF_IP=${REDIS_SLAVEOF_IP:-}
|
- REDIS_SLAVEOF_IP=${REDIS_SLAVEOF_IP:-}
|
||||||
- REDIS_SLAVEOF_PORT=${REDIS_SLAVEOF_PORT:-}
|
- REDIS_SLAVEOF_PORT=${REDIS_SLAVEOF_PORT:-}
|
||||||
|
- SNAT_TO_SOURCE=${SNAT_TO_SOURCE:-n}
|
||||||
|
- SNAT6_TO_SOURCE=${SNAT6_TO_SOURCE:-n}
|
||||||
volumes:
|
volumes:
|
||||||
- ./data/web/.well-known/acme-challenge:/var/www/acme:rw
|
- ./data/web/.well-known/acme-challenge:/var/www/acme:rw
|
||||||
- ./data/assets/ssl:/var/lib/acme/:rw
|
- ./data/assets/ssl:/var/lib/acme/:rw
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue