v3.7.0

• Submit-Renewal now has a PluginArgs parameter to make it easier to update plugin credentials without needing to create a new order from scratch. (Thanks @matt-FFFFFF)
• The FriendlyName parameter in New-PACertificate and New-PAOrder now defaults to the certificate's primary name instead of an empty string to avoid a Windows bug that can occur when installing the generated PFX files.
• Fixed Windows plugin issue when using WinZoneScope and not all zones have that scope (#168)
• Fixed an internal bug with Export-PACertFiles that luckily didn't cause problems due to PowerShell variable scoping rules.
• Fixed a typo in the Cloudflare guide examples. (Thanks @mccanney)

v3.6.0

• Added new DNS plugins
  • Domeneshop (Thanks @ornulfn)
  • Dreamhost (Thanks @jhendricks123)
  • EasyDNS (Thanks @abrysiuk)
  • FreeDNS (afraid.org)
• Added Invoke-HttpChallengeListener function (Thanks @Soltroy). This runs a self-hosted web server that can answer HTTP challenges. Look for a wiki usage guide soon.
• Added Remove-PAServer function. Warning: This deletes all data (accounts, orders, certs) associated with an ACME server.
• Added Install-PACertificate function. This can be used to manually import a cert to the Windows cert store. (#159)
• Added support for Cloudflare's new limited access API Tokens. See usage guide for details.
• Added support for propagation polling with ClouDNS plugin. See usage guide for details.
• Fixed edge case zone finding bug with ClouDNS plugin.
• Fixed DOcean (Digital Ocean) plugin which broke because they now enforce a 30 sec TTL minimum on record creation.
• Fixed overly aggressive error trapping in OVH plugin. (#162)
• Fixed a typo in the OVH plugin usage guide.
• Fixed SkipCertificateCheck is no longer ignored when passing a PAServer object via pipeline to Set-PAServer.
• Fixed Submit-ChallengeValidation no longer tries to sleep when DnsSleep = 0.
• Some internal refactoring.

v3.5.0

• Added new DNS plugin for Simple DNS Plus (#149) (Thanks @alphaz18)
• Changed a bunch of "-ErrorAction SilentlyContinue" references to "Ignore" so we're not filling the $Error collection with junk.
• Fix for Boulder removing ID field from new account output.
• Fixed an issue in a number of plugins that could cause errors if the case of the requested record didn't match the server's zone case. (Thanks @Makr91)
• Fixed a bug with the Route53 plugin when used on PowerShell Core without the AwsPowerShell module installed.
• Fixed some typos in the OVH plugin usage guide examples (#147)

v3.4.0

• Added new DNS plugin for OVH (#79)
• Added ZoneScope support to Windows plugin (#134) (Thanks @dawe78)
• Fixed issue #139 with GCloud plugin prompting for GCKeyFile after upgrading to 3.3.0. Users affected by this issue will need to submit a new cert request to re-establish the GCloud plugin config.
• Fixed issue #140 with AcmeDns plugin losing registration data after upgrading to 3.3.0. Users affected by this issue will need to submit a new cert request to re-establish the AcmeDns plugin config and it will likely involve updating any CNAME records currently in use.

v3.3.0

• Route53 plugin now has IAM Role support if you're running Posh-ACME from within AWS. See plugin usage guide for details (#128)
• Dynu plugin migrated to v2 of the Dynu API
• Fixed DNSPlugin and DNSAlias arrays not getting expanded properly when the number of names in the cert didn't match the values in those arrays.
• Fixed validation bugs when using SAN certs with challenge aliases or multiple different plugins (#127) (Thanks @whbingham)
• Revamped serialization/deserialization for plugin arguments which should prevent accidentally creating parameter binding conflicts when switching between parameter sets for a particular plugin (#129).

v3.2.1

• Fix #122 to make sure private keys are imported properly when using -Install
• Improve error handling for duplicate public zones in Azure. (#125)
• Add tag based workaround for duplicate public zones in Azure. (#125)

v3.2.0

• Added new DNS plugin for name.com registrar (Thanks @ravensorb)
• Added additional argument completers for Account IDs, MainDomain, and KeyLength parameters
• The Posh-ACME config location can now be set by creating a POSHACME_HOME environment variable. The directory must exist and be accessible prior to importing the module. If you change the value of the environment variable, you need to re-import the module with -Force or open a new PowerShell session for the change to take effect.
• Added better error handling for cases where the config location is not writable.
• Get-PACertificate now returns null instead of throwing an error if the cert or associated order doesn't exist
• Fixed the ability to revoke a certificate after the associated order has expired
• Fix for #117 involving broken renewal processing on PowerShell Core in non-US locales
• Fixes for additional DateTime handling on PowerShell Core

v3.1.1

• Fixed typo in Route53 plugin that prevented finding the AwsPowershell module

v3.1.0

• The following plugins have added non-Windows OS support or extended their existing support. Check the plugin guides for details.
  • Azure
  • DNSimple
  • Infoblox
  • Linode
  • LuaDns
  • NS1
  • Route53
• Route53 plugin no longer requires AwsPowershell module when used with explicit keys. It will still use the module if it's installed.
• Added tab completion for plugin names with Get-DnsPluginHelp
• Fix #112 for Azure and errors with private zones and subscriptions with more than 100 zones

v3.0.1

• Fix for #110 Submit-Renewal with -AllOrders or -AllAccounts fails to renew orders with invalid status. (Thanks @jeffmnall!)
• Fix for #109 New-PACertificate throws an error if -DnsPlugin is not specified rather than defaulting to Manual. (Thanks @TiloGit!)
• Fix internal BouncyCastle to .NET private key conversions where key parameters may need padding. (Thanks @alexzorin and @webprofusion-chrisc!)