Index: openacs-4/packages/acs-admin/tcl/acs-admin-procs.tcl =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/acs-admin/tcl/acs-admin-procs.tcl,v diff -u -r1.2.2.5 -r1.2.2.6 --- openacs-4/packages/acs-admin/tcl/acs-admin-procs.tcl 20 Jul 2021 09:17:27 -0000 1.2.2.5 +++ openacs-4/packages/acs-admin/tcl/acs-admin-procs.tcl 5 Feb 2022 22:32:28 -0000 1.2.2.6 @@ -10,16 +10,20 @@ ad_proc -private ::acs_admin::check_expired_certificates { {-api production} + {-key_type ecdsa} } { + Check expire-dates of certificates and send warning emails to the admin. In case HTTPS is not configured via the "nsssl" driver, or the command line tool "openssl" is not installed, the proc does nothing. @param api possible values: "production" or "staging". In case the certificate is expired, use this type of - letsencrypt environment to obtain a fresh certificate + letsencrypt environment to obtain a fresh certificate. + @param key_type possible values: "rsa" or "ecdsa". + @return boolean telling whether expired certificates existed (true) or not (false) } { @@ -111,8 +115,15 @@ # configuration file from section: # (ns_section ns/server/${server}/module/letsencrypt) # + if {[::letsencrypt::Client info lookup parameters \ + create key_type] ne ""} { + set key_type_parameter "-key_type $key_type" + } else { + set key_type_parameter "" + } set c [::letsencrypt::Client new \ -API $api \ + {*}$key_type_parameter \ -background \ -domains {} \ ]