Move DNS providers out of ACME package.

Issue/140: Using RFC2136 dns challenge does not allow me to create multi domain certs.

Camelcased: fqdn2zone to fqdnToZone
Grammatical fix in externally visible error message

- Reworked the code in dns_challenge.go to not assume nameserver is
port-less or defaults to 5...

Conflicts solved:
README.md
cli.go

Some small textual fixes and adding a flag to supress bundle creation.

- Removal of RFC2136_ZONE from help text
- Query nameserver directly to find zone we have to up...

Add EC support

CLI: Give helpful error message if --http/--tls is given without colon

Fixes #134

DNS Challenge: Fix handling of CNAMEs

Prior to this commit, the checkDNSPropagation function was exiting
early if the TXT record could...

Fix TestCheckAuthoritativeNss failure report

Refactor CloudFlare DNS provider to have no 3rd party dependencies

Fix small typos in error messages

Add go vet to the CI checks, fix vet errors and set default HTTP timeout to 10 seconds.

This will prevent indefinitely-hanging requests in case some service or middle box is malfunctio...

Made the solvers exported and added New... functions to them.

--dns=foo means we specifically intend to fulfill a DNS challenge

The default AWS HTTP client retries three times with a deadline of 10 seconds in order to fetch m...

Allow to customize the TSIG algorithm and allow to omit the DNS port

Append the default DNS port if the nameserver specification does not
contain any.

Add a new environment variable RFC2136_TSIG_ALGORITHM that accepts the
TSIG algorithm pseudo-dom...

Refactor DNS check

Other providers should be used with the SetChallengeProvider function
and should supply a New fu...

When using this option, the challenge will be written in a file in
".well-known/acme-challenge/"...

* Gets a list of all authoritative nameservers by looking up the NS RRs for the root domain (zon...

Mention the Let's Encrypt staging endpoint in the README

http-01 challenge: disable TCP connection reuse

Fixes #106

If TCP connection reuse (KeepAlives) are left on then, in a sequence
of challenges arising from ...

Add support for additional AWS authentication sources

GetOCSPForCert should fail if there are no OCSP servers in the cert.

Compact IAM policy

`Sid` is optional and can be omitted for brevity.

Both `route53:ListHostedZones` and `route53:G...

AWS client tools commonly support passing credentials via
`AWS_ACCESS_KEY_ID` + `AWS_SECRET_ACCE...

Handle HEAD request errors

Add full CLI example and IAM policy for Route 53 to the README.

skip]

Route53 provider fixes

- InvalidTXTRDATA error when creating TXT record (closes #94)
- Present() should poll and wait un...

Add missing domain name for consistency

Fix bugs with subdomains

dns_challenge preCheckDNS: let system resolver decide IPv4 ./. IPv6.

Before the change:

2016/01/30 00:23:37 [INFO][simonecarletti.com, foo1.simonecarletti.com, ...

This is a very subtle bug. In some specific circumstances, when the
list of domains in the SAN w...

We can ask the OS resolver for the IP of Google's public anycast DNS.
No need to "bootstrap" wit...

Mark DNS challenge as completed in the README

When requesting a certificate for a subdomain, the DNS record was
attached to the domain instead...

Add DNSimple DNS support

re-apply 5930ea52f0311bde21a68895d72a84e3fbc1db4d
Fixes #87

The Go docs recommend this.

Add DigitalOcean DNS provider

Also a few vet/lint fixes and improved some error messages

I also had to rename the `envAuth()` in the Cloudflare implementation
to avoid the "redeclared" ...