summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorArun Isaac2023-08-01 21:53:23 +0100
committerArun Isaac2023-08-09 16:43:59 +0100
commit4e0e17a869fba5fbd2d581cc114ed8659bc4a316 (patch)
tree8a7819a2b972002db058c5db71cd773be9ce6ce6
parented00ffbaa86a8ef1c25fccd16e96315ca5d2505e (diff)
downloadguix-forge-4e0e17a869fba5fbd2d581cc114ed8659bc4a316.tar.gz
guix-forge-4e0e17a869fba5fbd2d581cc114ed8659bc4a316.tar.lz
guix-forge-4e0e17a869fba5fbd2d581cc114ed8659bc4a316.zip
acme: Add uacme.
* guix/forge/acme.scm: New file.
-rw-r--r--guix/forge/acme.scm79
1 files changed, 79 insertions, 0 deletions
diff --git a/guix/forge/acme.scm b/guix/forge/acme.scm
new file mode 100644
index 0000000..ee715ae
--- /dev/null
+++ b/guix/forge/acme.scm
@@ -0,0 +1,79 @@
+;;; guix-forge --- Guix software forge meta-service
+;;; Copyright © 2023 Arun Isaac <arunisaac@systemreboot.net>
+;;;
+;;; This file is part of guix-forge.
+;;;
+;;; guix-forge is free software: you can redistribute it and/or modify
+;;; it under the terms of the GNU General Public License as published
+;;; by the Free Software Foundation, either version 3 of the License,
+;;; or (at your option) any later version.
+;;;
+;;; guix-forge is distributed in the hope that it will be useful, but
+;;; WITHOUT ANY WARRANTY; without even the implied warranty of
+;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+;;; General Public License for more details.
+;;;
+;;; You should have received a copy of the GNU General Public License
+;;; along with guix-forge. If not, see
+;;; <https://www.gnu.org/licenses/>.
+
+(define-module (forge acme)
+ #:use-module ((gnu packages autotools) #:select (autoconf automake))
+ #:use-module ((gnu packages curl) #:select (curl))
+ #:use-module ((gnu packages documentation) #:select (asciidoc))
+ #:use-module ((gnu packages pkg-config) #:select (pkg-config))
+ #:use-module ((gnu packages tls) #:select (gnutls))
+ #:use-module (guix build-system gnu)
+ #:use-module (guix gexp)
+ #:use-module (guix git-download)
+ #:use-module ((guix licenses) #:prefix license:)
+ #:use-module (guix packages))
+
+(define-public uacme
+ (package
+ (name "uacme")
+ (version "1.7.4")
+ (source (origin
+ ;; TODO: Unbundle libev.
+ (method git-fetch)
+ (uri (git-reference
+ (url "https://github.com/ndilieto/uacme/")
+ (commit (string-append "v" version))))
+ (file-name (git-file-name name version))
+ (sha256
+ (base32
+ "1jhjyjnrfq07qgslmz1qpka1ahnmpya2garbxldkh2fr0bmsn26b"))))
+ (build-system gnu-build-system)
+ (arguments
+ (list #:phases
+ #~(modify-phases %standard-phases
+ (add-after 'unpack 'set-version
+ (lambda _
+ (substitute* "configure.ac"
+ (("m4_esyscmd\\(\\[build-aux/git-version-gen \\.tarball-version\\]\\)")
+ #$version)))))))
+ (inputs
+ (list curl gnutls))
+ (native-inputs
+ (list asciidoc autoconf automake pkg-config))
+ (home-page "https://github.com/ndilieto/uacme")
+ (synopsis "Minimal ACMEv2 client written in C")
+ (description "uacme is a lightweight client for the RFC8555 ACMEv2
+protocol, written in plain C with minimal dependencies. The ACMEv2
+protocol allows a Certificate Authority such as Let's Encrypt and an
+applicant to automate the process of verification and certificate
+issuance.
+
+uacme calls an external hook program with the tokens required for
+domain authorization. The hook program can be an executable, shell
+script, perl script, python script, or any file that the operating
+system can execute.
+
+uacme is ACME challenge agnostic. It provides the user or hook
+program with all tokens and information required to complete any
+challenge type but leaves the task of setting up and cleaning up the
+challenge environment to the user or hook.
+
+uacme also includes ualpn, a lightweight proxying tls-alpn-01
+challenge responder compliant with RFC8737 and RFC8738.")
+ (license license:gpl3+)))