IRC logs for #aegir, 2018-01-26 (GMT)

2018-01-25
2018-01-27
TimeNickMessage
[14:08:55]* TaoStyle has joined #aegir
[14:21:44]* TaoStyle has quit (Quit: leaving)
[17:17:41]* ybabel has joined #aegir
[17:40:27]* ybabel has quit (Ping timeout: 268 seconds)
[18:29:28]* hefring has joined #aegir
[18:30:14]* hefring has joined #aegir
[19:21:26]* reaper013 has joined #aegir
[20:46:04]* ybabel has joined #aegir
[21:00:40]* ybabel has quit (Ping timeout: 260 seconds)
[21:39:34]* ybabel has joined #aegir
[21:43:48]* ybabel has quit (Ping timeout: 240 seconds)
[23:59:32]* ybabel has joined #aegir
[00:01:55]* ybabel1 has joined #aegir
[00:03:48]* ybabel has quit (Ping timeout: 240 seconds)
[00:03:48]* ybabel1 is now known as ybabel
[00:38:14]<bgm>just throwing this out there: I'm really looking forward to Lets Encrypt wildcard DNS certs, since I'm now pretty much stuck hitting LE rate limits
[00:38:29]<bgm>erm, wildcard certs*, not DNS :)
[00:39:06]<jonpugh2>Seriously, I hit the rate limits on the first day of using LE in Aegir :)
[00:39:32]<bgm>because of fails? or too many domains/subdomains?
[00:39:47]<jonpugh2>I'm using devshop so we were creating sites like crazy...
[00:39:53]* shaneonabike1 has joined #aegir
[00:40:42]<bgm>haha, although one could argue you could use the staging endpoint, but I don't want to add the staging cert to my exemptions in FF, worried I might not notice it at some point
[00:42:02]<bgm>I just have a lot of subdomains, partly because of dev sites, Aegir frontends, etc.. and while LE always allows renewals, it still counts in the rate-limits for new certs
[00:43:00]<bgm>I really don't understand their logic in the rate-limit docs.. they say to create new certs before running renewals.. but that at some point, say I run renewals on Monday 5pm, I will only have 1 day per week when I can create new certs.
[00:43:48]<bgm>(apparently I have 110 certs.. using the really neat `lectl` tool, https://github.com/sahsanu/lectl.git)
[00:52:36]<bgm>https://github.com/lukas2511/dehydrated/issues/420#issuecomment-359616557
[00:52:56]<bgm>seems like the dehydrated dev almost has an APIv2 / wildcard-cert support
[00:52:59]<bgm>pretty cool
[00:59:18]<bgm>I wonder if this is something we could add in hosting_https without changing the entire model back again.. i.e. add a "[x] use wildcard" option, and then it strips the first part of the domain, and requests a wildcard
[01:00:52]<bgm>but woth noting that wildcard certs will require DNS validation. Dehydrated supports that already, but might require some manual conf to support our DNS providers (this seems fairly niche, to not want to implement - in the short term - a config UI for all the various DNS providers/API-types)
[01:03:39]* ybabel1 has joined #aegir
[01:05:46]* ybabel has quit (Ping timeout: 252 seconds)
[01:05:47]* ybabel1 is now known as ybabel
[01:36:48]* shaneonabike1 has left #aegir ("PART #drupal-commerce :PING 1516977408")
[02:06:27]<ouelmart>ergonlogic[m]: are you there yet?
[02:17:08]<ouelmart>ergonlogic[m]: https://jpst.it/1aaX9
[03:19:42]* reaper013 has quit (Quit: Page closed)
[03:24:02]* ybabel1 has joined #aegir
[03:25:27]* ybabel has quit (Ping timeout: 246 seconds)
[03:25:27]* ybabel1 is now known as ybabel
[04:14:59]<jonpugh>memtkmcc: I have some questions about NGINX support for provision 4.x, ping me when you are around?
[04:40:32]* ybabel has quit (Ping timeout: 256 seconds)
[09:02:08]* ouelmart has quit (Read error: Connection reset by peer)
[10:55:35]<memtkmcc>jonpugh: yep, I know we need to remove legacy stuff and drush_get_option everywhere there.. responded via PM.
[10:57:20]<jonpugh>Started here: https://github.com/aegir-project/provision/pull/25
[10:57:47]<jonpugh>Getting Forbidden, is that second vhost template necessary?
[10:59:34]<memtkmcc>all templates there are for a reason, I think.. which one?