summaryrefslogtreecommitdiff
path: root/modules/caddypki
diff options
context:
space:
mode:
Diffstat (limited to 'modules/caddypki')
-rw-r--r--modules/caddypki/acmeserver/acmeserver.go10
-rw-r--r--modules/caddypki/ca.go8
2 files changed, 5 insertions, 13 deletions
diff --git a/modules/caddypki/acmeserver/acmeserver.go b/modules/caddypki/acmeserver/acmeserver.go
index 6023e06..9d8a6fc 100644
--- a/modules/caddypki/acmeserver/acmeserver.go
+++ b/modules/caddypki/acmeserver/acmeserver.go
@@ -132,11 +132,11 @@ func (ash *Handler) Provision(ctx caddy.Context) error {
return err
}
- acmeAuth, err := acme.NewAuthority(
- auth.GetDatabase().(nosql.DB), // stores all the server state
- ash.Host, // used for directory links; TODO: not needed
- strings.Trim(ash.PathPrefix, "/"), // used for directory links
- auth) // configures the signing authority
+ acmeAuth, err := acme.New(auth, acme.AuthorityOptions{
+ DB: auth.GetDatabase().(nosql.DB), // stores all the server state
+ DNS: ash.Host, // used for directory links; TODO: not needed
+ Prefix: strings.Trim(ash.PathPrefix, "/"), // used for directory links
+ })
if err != nil {
return err
}
diff --git a/modules/caddypki/ca.go b/modules/caddypki/ca.go
index c0a0096..f95c9a0 100644
--- a/modules/caddypki/ca.go
+++ b/modules/caddypki/ca.go
@@ -309,14 +309,6 @@ func (ca CA) loadOrGenIntermediate(rootCert *x509.Certificate, rootKey interface
func (ca CA) genIntermediate(rootCert *x509.Certificate, rootKey interface{}) (interCert *x509.Certificate, interKey interface{}, err error) {
repl := ca.newReplacer()
- rootKeyPEM, err := ca.storage.Load(ca.storageKeyRootKey())
- if err != nil {
- return nil, nil, fmt.Errorf("loading root key to sign new intermediate: %v", err)
- }
- rootKey, err = pemDecodePrivateKey(rootKeyPEM)
- if err != nil {
- return nil, nil, fmt.Errorf("decoding root key: %v", err)
- }
interCert, interKey, err = generateIntermediate(repl.ReplaceAll(ca.IntermediateCommonName, ""), rootCert, rootKey)
if err != nil {
return nil, nil, fmt.Errorf("generating CA intermediate: %v", err)