uri
The\ndirectory URL\nof the ACME server.\nThis directive is mandatory.
\n" + "description_md": "The\n[directory URL](https://datatracker.ietf.org/doc/html/rfc8555#section-7.1.1)\nof the ACME server.\nThis directive is mandatory.", + "description_html": "The\ndirectory URL\nof the ACME server.\nThis directive is mandatory.
\n" }, { "name": "account_key", @@ -96,6 +96,22 @@ "description_md": "The account's private key used for request authentication.\n\nAccepted values:\n- `ecdsa`:*`256`*/*`384`*/*`521`*\n for ES256, ES384, or ES512 JSON Web Signature algorithms\n- `rsa`:*`2048`*/*`3072`*/*`4096`*\n for RS256.\n- File path for an existing key, using one of the algorithms above.\n\nThe generated account keys are preserved across reloads,\nbut will be lost on restart unless [`state_path`](https://nginx.org/en/docs/http/ngx_http_acme_module.html#state_path) is configured.", "description_html": "The account’s private key used for request authentication.
\n\nAccepted values:
\n\necdsa:256/384/521\nfor ES256, ES384, or ES512 JSON Web Signature algorithmsrsa:2048/3072/4096\nfor RS256.The generated account keys are preserved across reloads,\nbut will be lost on restart unless state_path is configured.
type
Specifies the ACME challenge type to be used for the issuer.
\n\nAccepted values:
\n\nhttp-01 (http)tls-alpn-01 (tls-alpn)\n\n" + }, { "name": "contact", "default": "", @@ -112,6 +128,22 @@ "description_md": "Sets an array of URLs that the ACME server can use\nto contact the client regarding account issues.\nThe `mailto:` scheme will be used\nunless specified explicitly.", "description_html": "ACME challenges are versioned.\nIf an unversioned name is specified,\nthe module automatically selects the latest implemented version.
\n
Sets an array of URLs that the ACME server can use\nto contact the client regarding account issues.\nThe mailto: scheme will be used\nunless specified explicitly.
kid file
Specifies a key identifier kid and a file\nwith the MAC key for\n external account authorization.
The value data:key can be specified\ninstead of the file, which loads a key directly from\nthe configuration without using intermediate files.
In both cases, the key is expected to be encoded in\n base64url.
\n" + }, { "name": "ssl_trusted_certificate", "default": "", @@ -146,19 +178,19 @@ }, { "name": "state_path", - "default": "", + "default": "acme_path
path | off
Defines a directory for storing the module data\nthat can be persisted across restarts.\nThis can improve the load time by skipping some requests on startup,\nand avoid hitting request rate limits on the ACME server.
\n\nThe directory contains sensitive content, such as\nthe account key, issued certificates, and private keys.
\n" + "description_md": "Defines a directory for storing the module data\nthat can be persisted across restarts.\nThis can improve the load time by skipping some requests on startup,\nand avoid hitting request rate limits on the ACME server.\n\nThe directory contains sensitive content, such as\nthe account key, issued certificates, and private keys.\n\nThe `off` parameter (0.2.0) disables storing the account\ninformation and issued certificates on disk.\n\n> Prior to version 0.2.0, the state directory was not created by default.", + "description_html": "Defines a directory for storing the module data\nthat can be persisted across restarts.\nThis can improve the load time by skipping some requests on startup,\nand avoid hitting request rate limits on the ACME server.
\n\nThe directory contains sensitive content, such as\nthe account key, issued certificates, and private keys.
\n\nThe off parameter (0.2.0) disables storing the account\ninformation and issued certificates on disk.
\n\n" }, { "name": "accept_terms_of_service", @@ -17346,5 +17378,5 @@ ] } ], - "version": "https://github.com/nginx/nginx.org/commit/8f7b354b3593482446c9ef7e24dc84686c5cba60" + "version": "https://github.com/nginx/nginx.org/commit/a42f51d66b765d47e9048b9d9646aaf1084a2b09" }Prior to version 0.2.0, the state directory was not created by default.
\n