if requesting a tls certificate through acme fails, put any validation error messages provided by the acme server in the error message

so users can understand what is going on. e.g. a CAA record that doesn't allow a CA to sign a certificate. previously, the error message would just be "no viable challenge type found", which doesn't help the user.
2025-07-14 03:34:37 +03:00 · 2023-10-13 09:28:01 +02:00
parent 14d09bb308
commit 7d28d80191
4 changed files with 19 additions and 4 deletions
--- a/go.mod
+++ b/go.mod
@ -4,7 +4,7 @@ go 1.20

 require (
 	github.com/mjl-/adns v0.0.0-20231009145311-e3834995f16c
-	github.com/mjl-/autocert v0.0.0-20231009155929-d0d48f2f0290
+	github.com/mjl-/autocert v0.0.0-20231013072455-c361ae2e20a6
 	github.com/mjl-/bstore v0.0.2
 	github.com/mjl-/sconf v0.0.5
 	github.com/mjl-/sherpa v0.6.6