distorted.lisp: Now using LetsEncrypt certificates on other servers.

author Mark Wooding <mdw@distorted.org.uk>

Wed, 27 Jan 2016 14:31:39 +0000 (14:31 +0000)

committer Mark Wooding <mdw@distorted.org.uk>

Wed, 27 Jan 2016 14:31:39 +0000 (14:31 +0000)
author Mark Wooding <mdw@distorted.org.uk>
Wed, 27 Jan 2016 14:31:39 +0000 (14:31 +0000)
committer Mark Wooding <mdw@distorted.org.uk>
Wed, 27 Jan 2016 14:31:39 +0000 (14:31 +0000)
diff --git a/distorted.lisp b/distorted.lisp

index 3b0b297..0c22c69 100644 (file)
--- a/distorted.lisp
+++ b/distorted.lisp
@@ -142,9 +142,13 @@
  
    ;; Colocated services.
    ((irc vox keys) (colo :svc jazz.colo :sshfp "jazz")
-                 (jump :svc jazz.jump :sshfp "jazz"))
+                 (jump :svc jazz.jump :sshfp "jazz")
+                 :tlsa (:https (:service-certificate-constraint
+                                :public-key :sha-256 #p"https-jazz")))
    ((bugs lists) (colo :svc telecaster.colo :sshfp "telecaster")
-               (jump :svc telecaster.jump :sshfp "telecaster"))
+               (jump :svc telecaster.jump :sshfp "telecaster")
+               :tlsa (:https (:service-certificate-constraint
+                              :public-key :sha-256 #p"https-telecaster")))
    ((git www mail) (colo :svc stratocaster.colo :sshfp "stratocaster")
                   (jump :svc stratocaster.jump :sshfp "stratocaster"))
    ((www git mail @) :tlsa (:https (:service-certificate-constraint
diff --git a/keys/https-jazz.pub b/keys/https-jazz.pub

new file mode 100644 (file)

index 0000000..85f81b9
--- /dev/null
+++ b/keys/https-jazz.pub
@@ -0,0 +1,11 @@
+-----BEGIN PUBLIC KEY-----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+-----END PUBLIC KEY-----
diff --git a/keys/https-telecaster.pub b/keys/https-telecaster.pub

new file mode 100644 (file)

index 0000000..6b05271
--- /dev/null
+++ b/keys/https-telecaster.pub
@@ -0,0 +1,11 @@
+-----BEGIN PUBLIC KEY-----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+-----END PUBLIC KEY-----
author	Mark Wooding <mdw@distorted.org.uk>
	Wed, 27 Jan 2016 14:31:39 +0000 (14:31 +0000)
committer	Mark Wooding <mdw@distorted.org.uk>
	Wed, 27 Jan 2016 14:31:39 +0000 (14:31 +0000)
distorted.lisp		patch \| blob \| blame \| history
keys/https-jazz.pub	[new file with mode: 0644]	patch \| blob
keys/https-telecaster.pub	[new file with mode: 0644]	patch \| blob