From bbad6931e30a2e74b3f53fff797d1115cc9dd491 Mon Sep 17 00:00:00 2001 From: Francis Lavoie Date: Wed, 2 Mar 2022 13:08:36 -0500 Subject: pki: Implement API endpoints for certs and `caddy trust` (#4443) * admin: Implement /pki/certificates/ API * pki: Lower "skip_install_trust" log level to INFO See https://github.com/caddyserver/caddy/issues/4058#issuecomment-976132935 It's not necessary to warn about this, because this was an option explicitly configured by the user. Still useful to log, but we don't need to be so loud about it. * cmd: Export functions needed for PKI app, return API response to caller * pki: Rewrite `caddy trust` command to use new admin endpoint instead * pki: Rewrite `caddy untrust` command to support using admin endpoint * Refactor cmd and pki packages for determining admin API endpoint --- modules/caddypki/pki.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'modules/caddypki/pki.go') diff --git a/modules/caddypki/pki.go b/modules/caddypki/pki.go index c19bd0f..4fd0bb5 100644 --- a/modules/caddypki/pki.go +++ b/modules/caddypki/pki.go @@ -91,7 +91,7 @@ func (p *PKI) Start() error { // install roots to trust store, if not disabled for _, ca := range p.CAs { if ca.InstallTrust != nil && !*ca.InstallTrust { - ca.log.Warn("root certificate trust store installation disabled; unconfigured clients may show warnings", + ca.log.Info("root certificate trust store installation disabled; unconfigured clients may show warnings", zap.String("path", ca.rootCertPath)) continue } -- cgit v1.2.3