Announcing the release of tnascert-deploy 2.2, an opensource tool used
for the deployment of TLS certificates to TrueNAS-SCALE and TrueNAS-CORE
systems. Release 2.2 introduces a new feature to help secure your
tnas-cert.ini configuration files through the use of OS environment
variables. In your tnas-cert.ini file, all configuration parameters
can be defined using bash like syntax to set the variables from the OS
environment. For example:
api_key = ${API_KEY}
username = ${USER_NAME}
password = ${PASS_WORD}
The new release has compiled binaries for macOS-ARM64, FreeBSD X86_64,
Linux X86_64, and Windows 11.
The Github repository with documentation is:
Release 2.2 downloads are available at:
Release 2.2 changes:
- environment variable expansion in the INI config file settingsAdd support for more strict certificate base name matching via strict_base name_match config option.
- Makefile updated for static builds
- replaced expired unit test certificates
- added checks to ensure that the connect_host config parameter is defined in the wsapi client
- added checks to ensure that an authentication mechanism is configured ie, api_key or username and password.
- fixed a bug in the wsapi client and added the cert_basename prefix check before deleting any unused certificates.
- documentation updates
Contributors:
John Rushford
Gordon Mckeown