From unknown Mon Aug 18 06:00:27 2025
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Mailer: MIME-tools 5.509 (Entity 5.509)
Content-Type: text/plain; charset=utf-8
From: bug#43333 <43333@debbugs.gnu.org>
To: bug#43333 <43333@debbugs.gnu.org>
Subject: Status: [PATCH] services: certbot: Support registration without
 email.
Reply-To: bug#43333 <43333@debbugs.gnu.org>
Date: Mon, 18 Aug 2025 13:00:27 +0000

retitle 43333 [PATCH] services: certbot: Support registration without email.
reassign 43333 guix-patches
submitter 43333 Timotej Lazar <timotej.lazar@araneo.si>
severity 43333 normal
tag 43333 patch

thanks


From debbugs-submit-bounces@debbugs.gnu.org Fri Sep 11 07:58:46 2020
Received: (at submit) by debbugs.gnu.org; 11 Sep 2020 11:58:46 +0000
Received: from localhost ([127.0.0.1]:42742 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
	id 1kGhhV-0003KT-SE
	for submit@debbugs.gnu.org; Fri, 11 Sep 2020 07:58:46 -0400
Received: from lists.gnu.org ([209.51.188.17]:59488)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <timotej.lazar@araneo.si>) id 1kGhhT-0003KJ-QZ
 for submit@debbugs.gnu.org; Fri, 11 Sep 2020 07:58:44 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:52916)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <timotej.lazar@araneo.si>)
 id 1kGhhT-0003X5-Fz
 for guix-patches@gnu.org; Fri, 11 Sep 2020 07:58:43 -0400
Received: from araneo.si ([2001:15c0:2110:3400::2]:48462)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <timotej.lazar@araneo.si>)
 id 1kGhhR-0004Pj-Kk
 for guix-patches@gnu.org; Fri, 11 Sep 2020 07:58:43 -0400
Received: from araneo.si (localhost.lan [127.0.0.1])
 by araneo.si (OpenSMTPD) with ESMTP id 5e2195bd
 for <guix-patches@gnu.org>; Fri, 11 Sep 2020 11:58:36 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=araneo.si; h=from:to:cc
 :subject:date:message-id:mime-version:content-type
 :content-transfer-encoding; s=20180623; bh=w4DN7Z4jBFtbNEuPAWKnn
 dCDEdw=; b=XHChOONlIwPtVEVftpyJbjnwAFjqqWCFTvL1eumNk5qPkFDYcfT84
 meSQur6yMpxbPUQ1KWX/sKxocyafp4pTZFu6cCOdD97wjGTgFEZEEJObq1cPM65p
 9XgEQo8Sa66BmDGpSm6AxYUCDF8c/J32Kcwbp7ewxwDrZ0oIjNeQrhG617JjLDDe
 nffwlidWuRQ2noBECRFYNinwO51P5mAV+BrLODBShSIh4wmXcIAHVvC1SXQkU7Jk
 4N8a5N/O0C/16mr6Xe8BNejhk0yXrZMGNPIik1YoRZFyd7fEtLioF5+eZsvdA4AW
 H4+TEJyJZdSxKWXxIMtpRRJJQA/L28Q6w==
Received: by araneo.si (OpenSMTPD) with ESMTPSA id 64fc316a
 (TLSv1.3:TLS_AES_256_GCM_SHA384:256:NO); 
 Fri, 11 Sep 2020 11:58:35 +0000 (UTC)
From: Timotej Lazar <timotej.lazar@araneo.si>
To: guix-patches@gnu.org
Subject: [PATCH] services: certbot: Support registration without email.
Date: Fri, 11 Sep 2020 13:55:55 +0200
Message-Id: <20200911115553.13306-1-timotej.lazar@araneo.si>
X-Mailer: git-send-email 2.28.0
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Received-SPF: pass client-ip=2001:15c0:2110:3400::2;
 envelope-from=timotej.lazar@araneo.si; helo=araneo.si
X-detected-operating-system: by eggs.gnu.org: No matching host in p0f cache.
 That's all we know.
X-Spam_score_int: -20
X-Spam_score: -2.1
X-Spam_bar: --
X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1,
 DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_PASS=-0.001,
 SPF_PASS=-0.001, T_FILL_THIS_FORM_SHORT=0.01 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-Spam-Score: -1.3 (-)
X-Debbugs-Envelope-To: submit
Cc: Timotej Lazar <timotej.lazar@araneo.si>
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, 
 <mailto:debbugs-submit-request@debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit@debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request@debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, 
 <mailto:debbugs-submit-request@debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces@debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
X-Spam-Score: -2.3 (--)

* gnu/services/certbot.scm (certbot-configuration): Add default for the
email option.
(certbot-command): Pass email for registration only when specified.
* doc/guix.texi (Certificate Services): "mandatory"→"optional" email.
---
Allow registering a Let’s Encrypt account without an email address,
which is dicouraged but possible. I tried factoring out the common
options for HTTP/manual challenges but it turned out quite messy, so I
just added the option for both cases.

Thanks!

 doc/guix.texi            |  7 ++++---
 gnu/services/certbot.scm | 11 ++++++++---
 2 files changed, 12 insertions(+), 6 deletions(-)

diff --git a/doc/guix.texi b/doc/guix.texi
index bad2d36e42..a8e7b27349 100644
--- a/doc/guix.texi
+++ b/doc/guix.texi
@@ -22469,9 +22469,10 @@ A list of @code{certificates-configuration}s for which to generate
 certificates and request signatures.  Each certificate has a @code{name}
 and several @code{domains}.
 
-@item @code{email}
-Mandatory email used for registration, recovery contact, and important
-account notifications.
+@item @code{email} (default: @code{#f})
+Optional email address used for registration and recovery contact.
+Setting this is encouraged as it allows you to receive important
+notifications about the account and issued certificates.
 
 @item @code{server} (default: @code{#f})
 Optional URL of ACME server.  Setting this overrides certbot's default,
diff --git a/gnu/services/certbot.scm b/gnu/services/certbot.scm
index 5643340799..1c67ff63f1 100644
--- a/gnu/services/certbot.scm
+++ b/gnu/services/certbot.scm
@@ -71,7 +71,8 @@
                        (default "/var/www"))
   (certificates        certbot-configuration-certificates
                        (default '()))
-  (email               certbot-configuration-email)
+  (email               certbot-configuration-email
+                       (default #f))
   (server              certbot-configuration-server
                        (default #f))
   (rsa-key-size        certbot-configuration-rsa-key-size
@@ -99,12 +100,14 @@
                    (if challenge
                      (append
                       (list name certbot "certonly" "-n" "--agree-tos"
-                            "-m" email
                             "--manual"
                             (string-append "--preferred-challenges=" challenge)
                             "--cert-name" name
                             "--manual-public-ip-logging-ok"
                             "-d" (string-join domains ","))
+                      (if email
+                          `("--email" ,email)
+                          '("--register-unsafely-without-email"))
                       (if server `("--server" ,server) '())
                       (if rsa-key-size `("--rsa-key-size" ,rsa-key-size) '())
                       (if authentication-hook
@@ -114,10 +117,12 @@
                       (if deploy-hook `("--deploy-hook" ,deploy-hook) '()))
                      (append
                       (list name certbot "certonly" "-n" "--agree-tos"
-                            "-m" email
                             "--webroot" "-w" webroot
                             "--cert-name" name
                             "-d" (string-join domains ","))
+                      (if email
+                          `("--email" ,email)
+                          '("--register-unsafely-without-email"))
                       (if server `("--server" ,server) '())
                       (if rsa-key-size `("--rsa-key-size" ,rsa-key-size) '())
                       (if deploy-hook `("--deploy-hook" ,deploy-hook) '()))))))
-- 
2.28.0





From debbugs-submit-bounces@debbugs.gnu.org Sun Sep 13 17:21:07 2020
Received: (at 43333-done) by debbugs.gnu.org; 13 Sep 2020 21:21:08 +0000
Received: from localhost ([127.0.0.1]:51930 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
	id 1kHZQp-0005zy-Ml
	for submit@debbugs.gnu.org; Sun, 13 Sep 2020 17:21:07 -0400
Received: from eggs.gnu.org ([209.51.188.92]:43606)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <ludo@gnu.org>) id 1kHZQl-0005yJ-D1
 for 43333-done@debbugs.gnu.org; Sun, 13 Sep 2020 17:21:06 -0400
Received: from fencepost.gnu.org ([2001:470:142:3::e]:38602)
 by eggs.gnu.org with esmtp (Exim 4.90_1)
 (envelope-from <ludo@gnu.org>)
 id 1kHZQg-0003ex-0a; Sun, 13 Sep 2020 17:20:58 -0400
Received: from [2a01:e0a:1d:7270:af76:b9b:ca24:c465] (port=48034 helo=ribbon)
 by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256)
 (Exim 4.82) (envelope-from <ludo@gnu.org>)
 id 1kHZQf-0004Jk-Ca; Sun, 13 Sep 2020 17:20:57 -0400
From: =?utf-8?Q?Ludovic_Court=C3=A8s?= <ludo@gnu.org>
To: Timotej Lazar <timotej.lazar@araneo.si>
Subject: Re: [bug#43333] [PATCH] services: certbot: Support registration
 without email.
References: <20200911115553.13306-1-timotej.lazar@araneo.si>
Date: Sun, 13 Sep 2020 23:20:48 +0200
In-Reply-To: <20200911115553.13306-1-timotej.lazar@araneo.si> (Timotej Lazar's
 message of "Fri, 11 Sep 2020 13:55:55 +0200")
Message-ID: <87a6xt9xvz.fsf@gnu.org>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-Spam-Score: -2.3 (--)
X-Debbugs-Envelope-To: 43333-done
Cc: 43333-done@debbugs.gnu.org
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, 
 <mailto:debbugs-submit-request@debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit@debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request@debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, 
 <mailto:debbugs-submit-request@debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces@debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
X-Spam-Score: -3.3 (---)

Hi Timotej,

Timotej Lazar <timotej.lazar@araneo.si> skribis:

> * gnu/services/certbot.scm (certbot-configuration): Add default for the
> email option.
> (certbot-command): Pass email for registration only when specified.
> * doc/guix.texi (Certificate Services): "mandatory"=E2=86=92"optional" em=
ail.
> ---
> Allow registering a Let=E2=80=99s Encrypt account without an email addres=
s,
> which is dicouraged but possible. I tried factoring out the common
> options for HTTP/manual challenges but it turned out quite messy, so I
> just added the option for both cases.

Good.  Applied, thanks!

Ludo=E2=80=99.




From unknown Mon Aug 18 06:00:27 2025
Received: (at fakecontrol) by fakecontrolmessage;
To: internal_control@debbugs.gnu.org
From: Debbugs Internal Request <help-debbugs@gnu.org>
Subject: Internal Control
Message-Id: bug archived.
Date: Mon, 12 Oct 2020 11:24:05 +0000
User-Agent: Fakemail v42.6.9

# This is a fake control message.
#
# The action:
# bug archived.
thanks
# This fakemail brought to you by your local debbugs
# administrator