From 40c249d4401f6ee889c2e398e7605952772eb6ce Mon Sep 17 00:00:00 2001
From: Lexi Winter <ivy@FreeBSD.org>
Date: Tue, 3 Jun 2025 12:34:59 +0100
Subject: add an "http" challenge handler

---
 acme.conf.5 | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

(limited to 'acme.conf.5')

diff --git a/acme.conf.5 b/acme.conf.5
index 8643d55..550123a 100644
--- a/acme.conf.5
+++ b/acme.conf.5
@@ -18,7 +18,7 @@ The following variables may be set:
 (Required.)
 The URL of the ACME server.
 .It Va ACME_DATADIR
-The path to the runtime datadirectory, where the ACME account key and any
+The path to the runtime data directory, where the ACME account key and any
 issued certificates will be stored.
 The default value is
 .Pa /var/db/lfacme .
@@ -28,6 +28,20 @@ The path to a directory containing hooks to invoke when issuing certificates
 .Xr domains.conf 5 ) .
 The default value is
 .Pa /usr/local/etc/lfacme/hooks .
+.It Va ACME_HTTP_CHALLENGE_DIR
+The directory to store ACME challenges when responding to an
+.Dq http-01
+challenge with the
+.Dq http
+challenge handler.
+This directory must be served at
+.Dq /.well-known/acme-challenge
+on any domain which will be validated with the
+.Dq http
+handler.
+There is no default value; you must set this if you use the
+.Dq http
+handler.
 .It Va ACME_KERBEROS_PRINCIPAL
 The Kerberos principal to use when responding to a
 .Dq dns-01
-- 
cgit v1.2.3