Project

General

Profile

Feature #10403

Add Proxy support to ACME package

Added by Jim Pingle 7 months ago. Updated about 18 hours ago.

Status:
Resolved
Priority:
Low
Assignee:
Category:
ACME
Target version:
-
Start date:
04/01/2020
Due date:
% Done:

0%

Estimated time:

Description

The ACME package does not utilize the system proxy settings when making outbound queries.

Though there is not specific support for proxies in acme.sh, it may be possible to nudge things to utilize the proxy in a similar manner to other shell scripts, by setting up the proper proxy environment variables (e.g. HTTP_PROXY, HTTPS_PROXY, HTTP_PROXY_AUTH).

The pkg_env() function in pkg-utils.inc already gathers this info into the right variables so it may be possible to leverage that and use its values before executing acme.sh.

History

#1 Updated by Jim Pingle 7 months ago

  • Status changed from New to Feedback

This has been implemented in ACME package version 0.6.6

I tested it against a local squid instance and it worked. The ACME calls went through the proxy and succeeded (even with authenticated proxy).

Note that the proxy must support/allow TCP_TUNNEL type connections for port 443, cURL seems to be smart enough to do the right thing when talking to a regular squid instance over 3128.

#2 Updated by Jim Pingle about 18 hours ago

  • Status changed from Feedback to Resolved

Also available in: Atom PDF