This release includes the following enhancements:

New backend: we migrated to a more stable backend, which seems to work all the time.

Bug fixes:

• #39
• #38
• #37
• #36
• #34

Full Changelog: v0.13.1...v0.14.1

This release includes the following enhancements:

New Authenticator: Thunderbird. If you use Thunderbird, you can perform de ACME Email challenge without configure imap/smtp parameters. Thunderbird Authenticator will manage Thunderbird client to receive, process and response the ACME challenge smoothly.
and the following fixes:

#33 : Error 500
#29 : All authorizations were not finalized by CA
#30 : ValueError: Valid PEM but no BEGIN CERTIFICATE/END CERTIFICATE delimiters.
#31 : Server returning 500 error

Full Changelog: v0.12.1...v0.13.1

This release includes the following enhancements:

• New Authenticator: MAPI/Outlook. If you use Outlook, you can perform de ACME Email challenge without configure imap/smtp parameters. MAPI Authenticator will manage Outlook client to receive, process and response the ACME challenge smoothly.

and the following fixes:

• #23: missing/bad cryptography module.
• #18: State clearly the need to add CASTLE root into the trust store.
• #8: abnormal cleanup when challenge fails in the IMAP Authenticator.
• #21: MAPI can only be used in Windows platform.

This release includes the following fixes:

• Migration from zope interfaces to certbot.display. Configuration interfaces are still there, since some core modules use them.

This release includes the following enhancements:

• Added the capability to revoke a P12 container.
• P12 revocation can be performed even in the case of account lost, since the private key is contained inside.
• Added P12 passphrase interaction for P12 revocation.

This release includes the following fixes:

• CSR report is used for easier identification.
• Paths are clearer to identify cert, ca and chain (ca cert).
• Cert, chain and ca are only defined for cert generation.
• certbot does not allow lineages nor renewals for certification with CSR.
• certbot does not allow cert-names for certification with CSR.

This release includes the following additions:

• Added routines for certification revocation.

This release includes the following fixes:

• emailAddress is added in the Subject.
• certbot does not allow other names than DNSNames in subjAltNames.
• Added email recipient to challenge message for multiple requests.

This release includes the following fixes:

• Passphrases are not displayed when introduced during the installation.
• Added DKIM verification when Authentication-Results are not present in the headers.
• Fixed intermediate CA chain.
• Fixed STARTTLS smtp configuration when no smtp-host is provided.

This release includes the following fixes:

• Fixed an error when --no-passphrase is used. Note that if no passphrase is provided, secret key is not encrypted.
• Fixed the report of stored certificates (.pem files).