From 326feda0d4d18730db6735fbbd87f7cd4d1ce1db Mon Sep 17 00:00:00 2001
From: Jeff Snider <jsnider@txstate.edu>
Date: Mon, 25 Mar 2024 16:25:28 -0500
Subject: [PATCH 1/4] Test wildcard property for "true," not just being defined

---
 getssl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/getssl b/getssl
index d3d80592..6f158beb 100755
--- a/getssl
+++ b/getssl
@@ -1240,7 +1240,7 @@ create_order() {
       for d in "${alldomains[@]}"; do
         # Convert domain to lowercase as response from server will be in lowercase
         lower_d=$(echo "$d" | tr "[:upper:]" "[:lower:]")
-        if [[ ( "$lower_d" == "$authdomain" && -z "$wildcard" ) || ( "$lower_d" == "*.${authdomain}" && -n "$wildcard" ) ]]; then
+        if [[ ( "$lower_d" == "$authdomain" && "$wildcard" != "true" ) || ( "$lower_d" == "*.${authdomain}" && "$wildcard" == "true" ) ]]; then
           debug "Saving authorization response for $authdomain for domain alldomains[$dn]"
           debug "Response = ${response//[$'\t\r\n']}"
           AuthLinkResponse[dn]=$response

From 753c2853ad9e6c0d54007c70148bb737e9aad6de Mon Sep 17 00:00:00 2001
From: Jeff Snider <jeff@jsnider.net>
Date: Tue, 26 Mar 2024 21:34:10 -0500
Subject: [PATCH 2/4] Update history

---
 getssl | 1 +
 1 file changed, 1 insertion(+)

diff --git a/getssl b/getssl
index 6f158beb..b35bbf65 100755
--- a/getssl
+++ b/getssl
@@ -290,6 +290,7 @@
 # 2023-02-04 Create newline to ensure [SAN] section can be parsed (#792)(MRigal)
 # 2023-02-22 Remove cronie from deb package dependencies (2.48)
 # 2024-03-18 Refresh the TXT record if a CNAME is found (JoergBruce #828) (2.49)
+# 2024-03-26 Test for "true" in wildcard property of authorization responses
 # ----------------------------------------------------------------------------------------
 
 case :$SHELLOPTS: in

From 28e29b872a394860c5591a03641b6241439f3cac Mon Sep 17 00:00:00 2001
From: Jeff Snider <jsnider@txstate.edu>
Date: Mon, 25 Mar 2024 16:25:28 -0500
Subject: [PATCH 3/4] Test wildcard property for "true," not just being defined

---
 getssl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/getssl b/getssl
index 122bd4ea..7baf2494 100755
--- a/getssl
+++ b/getssl
@@ -1241,7 +1241,7 @@ create_order() {
       for d in "${alldomains[@]}"; do
         # Convert domain to lowercase as response from server will be in lowercase
         lower_d=$(echo "$d" | tr "[:upper:]" "[:lower:]")
-        if [[ ( "$lower_d" == "$authdomain" && -z "$wildcard" ) || ( "$lower_d" == "*.${authdomain}" && -n "$wildcard" ) ]]; then
+        if [[ ( "$lower_d" == "$authdomain" && "$wildcard" != "true" ) || ( "$lower_d" == "*.${authdomain}" && "$wildcard" == "true" ) ]]; then
           debug "Saving authorization response for $authdomain for domain alldomains[$dn]"
           debug "Response = ${response//[$'\t\r\n']}"
           AuthLinkResponse[dn]=$response

From ac03afe62929a78e880e9eb5ec8dfa878250fb18 Mon Sep 17 00:00:00 2001
From: Jeff Snider <jeff@jsnider.net>
Date: Tue, 26 Mar 2024 21:34:10 -0500
Subject: [PATCH 4/4] Update history

---
 getssl | 1 +
 1 file changed, 1 insertion(+)

diff --git a/getssl b/getssl
index 7baf2494..0d480bbc 100755
--- a/getssl
+++ b/getssl
@@ -290,6 +290,7 @@
 # 2023-02-04 Create newline to ensure [SAN] section can be parsed (#792)(MRigal)
 # 2023-02-22 Remove cronie from deb package dependencies (2.48)
 # 2024-03-18 Refresh the TXT record if a CNAME is found (JoergBruce #828) (2.49)
+# 2024-03-26 Test for "true" in wildcard property of authorization responses
 # ----------------------------------------------------------------------------------------
 
 case :$SHELLOPTS: in