Skip to content

Commit

Permalink
Revert renewal margin reduction
Browse files Browse the repository at this point in the history 
See #93.

©! I hereby licence these changes under the licence with SHA256 hash
©! fd80a26fbb3f644af1fa994134446702932968519797227e07a1368dea80f0bc.
  • Loading branch information
@hlandau
hlandau committed Feb 13, 2016
1 parent 82cb6d0 commit 0e266e3
Show file tree
Hide file tree
Showing 2 changed files with 4 additions and 2 deletions.
2 changes: 1 addition & 1 deletion _doc/SCHEMA.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -706,7 +706,7 @@ This operation is idempotent.

**Near expiry.** A certificate is near expiry if the difference between the
current time and the "Not After" time is less than some implementation-specific
threshold. The RECOMMENDED threshold is 14 days or 33% of the validity period,
threshold. The RECOMMENDED threshold is 30 days or 33% of the validity period,
whichever is lower.

**Most Preferred Certificate.** The Most Preferred Certificate for a given
Expand Down
4 changes: 3 additions & 1 deletion storageops/util.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,7 +43,9 @@ func targetGt(a *storage.Target, b *storage.Target) bool {
return len(a.Satisfy.Names) > len(b.Satisfy.Names)
}

const renewalMargin = 14 * 24 * time.Hour // close enough to 14 days
// This is 30 days, which is a bit high, but Let's Encrypt sends expiration
// emails at 19 days, so...
const renewalMargin = 30 * 24 * time.Hour // close enough to 30 days

func renewTime(notBefore, notAfter time.Time) time.Time {
validityPeriod := notAfter.Sub(notBefore)
Expand Down

0 comments on commit 0e266e3

Please sign in to comment.