Fix: The CA bundle now always includes the root certificate. Previously, only the intermediate certificate was included in the CA bundle, which caused installation failures on hosting servers (including cPanel servers) where the root certificate was not present in the local trust store. This fix also ensures correct handling of Let’s Encrypt’s newer Generation Y chains, which can contain more than three certificates.
[Pro] Fix: Improved cPanel API error logging to correctly handle all response types. Previously, only the first ‘errors’ was included. The logger now safely handles null, arrays, and any unexpected types, and labels each section of errors, messages, and warnings for easier diagnosis.
4.6.2
Fixed WordPress 6.7+ translation loading notices by delaying plugin textdomain usage until the init hook.
Delayed admin class initialization to prevent translation functions from running too early.
[Pro] Reused the plugin environment check handler in cron.php and removed early translated requirement messages.
Replaced direct-access translated die() messages with plain text to avoid early translation loading.
Updated the Freemius WordPress SDK to version 2.13.1.
Updated readme.txt
4.6.1
Fixed one line of code that requires PHP 7.0 or later. But this plugin supports PHP 5.6
Updated the Freemius WordPress SDK to version 2.13.0.
Updated readme.txt
4.6.0
Enhanced Error Logging: Enhanced error logging for domain control validation failures using HTTP-01 challenge, now including the challenge URI content for improved debugging and diagnostics.
Optimized Server IP Detection: Optimized the aifs_ip_of_this_server() function to accurately detect the server’s IP address, ensuring reliable results even when SERVER_ADDR returns false positives.
Improved Localhost Detection: Improved the is_localhost() function in AutoInstallFreeSSLFreeSSLAutoAdminFactory to accurately determine if the website is hosted on a localhost environment.
Improved Help Text: Updated help text of the ‘Generate SSL’ page to provide clearer guidance for WordPress installations on localhost and bare IP addresses, enhancing user experience.
Enhanced UI Functionality: Modified the ‘Generate SSL’ page to disable the ‘Next Step’ button when WordPress is installed on a bare IP address, preventing invalid actions.
Updated the Freemius WordPress SDK to version 2.12.1.
4.5.1
Updated the Freemius WordPress SDK to the latest version.
4.5.0
Updated the Freemius WordPress SDK to version 2.10.1.
Improved some code.
Fixed _load_textdomain_just_in_time notice.
Fixed some minor issues.
4.4.0
Updated the Freemius WordPress SDK to version 2.9.0.
4.3.0
Updated the URL of the Let’s Encrypt™ Subscriber Agreement and made it dynamic.
Updated the Freemius WordPress SDK to version 2.8.1.
[Pro] Fixed an issue with filtering domain and aliases if the control panel is not cPanel.
4.2.0
Updated the Freemius WordPress SDK to version 2.7.4.
[Pro] Added a feature to group all domains by document root, useful for users with multiple aliases (i.e., ServerAlias) for domains sharing the same document root.
4.1.0
Fixed an issue with the documentroot being passed with the domain and ServerAlias in Step 1 of generating a free SSL certificate.
Improved error handling in Step 1 of generating a free HTTPS certificate.
[Pro] Fixed an issue for non-cPanel websites: SSL certificate file path was not loaded correctly during the first time free ssl security certificate generation.
Improved the function aifs_ip_of_this_server() to support IPv6.
Added functions to detect if the WordPress website is hosted on localhost or a bare IP address. Displays information and recommendations in the WordPress dashboard, as Let’s Encrypt™ does not issue free HTTPS SSL certificates for localhost and bare IP addresses.
Updated the Freemius WordPress SDK to version 2.7.3.
4.0.0
Improved the Generate SSL page.
[Pro] Improved the main page.
[Pro] Fixed an bug with automatic SSL installation on cPanel if the plugin generates the SSL certificate for the first time.
[Pro] Added a page to download SSL certificates if the license is for unlimited sites and multi-domain mode is activated. In any other cases, the users was already able to download the SSL certificate from the plugin’s main page.
Updated the Freemius WordPress SDK to version 2.7.2.
Introduced toggle switch option to enable or disable SSL renewal reminders before the expiry.
Moved Delete plugin data on plugin deactivation option from Log page to Generate Free SSL Certificate page (main page in case of premium).
Introduced toggle switch option to enable or disable ‘Delete plugin data on plugin deletion’ option.
Moved Delete plugin data on deactivation logic to Freemius after uninstall action. Now plugin data will be deleted (if enabled) on plugin deletion (i.e., uninstallation) instead of deactivation.
Added an option to download the fullchain.pem file of the free encryption certificate if the web server software is NGINX.
Extended the option to exclude domain alias for single domain mode. However, for now, it need to be done through database entry.
Improved the logic that checks if the domain aliases are online with CURL (in addition to fsockopen).
Improved minimum system requirement check.
Moved Schedule daily Cron Job Event logic to the activation hook.
3.6.10
Updated the Freemius WordPress SDK to version 2.6.2.
[Pro] Fixed an issue with displaying a log message.
3.6.9
Updated the Freemius WordPress SDK to version 2.6.1.
[Pro] Added an existing video documentation in the cPanel settings page.
3.6.8
Introduced an email field in the first step of the free https certificate generation process to gather the admin email ID. This update ensures a valid email ID is provided for Let’s Encrypt account registration. In previous versions, the WordPress Administration Email Address was used for this purpose. However, certain hosting providers’ systems set an incorrect email as the WordPress Administration Email Address, leading to bounced emails for renewal reminders.
3.6.7
Updated the Freemius WordPress SDK to version 2.6.0.
3.6.6
Substituted the deprecated function get_currentuserinfo() with wp_get_current_user().
Enhanced some instructions for manual SSL generation.
[Pro] Enhanced the logging code for cases where the ‘.well-known/acme-challenge’ directory is not writable.
3.6.5
In version 3.6.3, we introduced A record verification for all domain aliases against the server’s IP address to cater to specific use cases. However, this caused issues for some websites to generate free ssl cert, especially those using CDNs. In this update, we’ve adjusted our approach: by default, only the ‘mail.’ alias A record is verified, as was the case in version 3.6.2 and earlier. However, the user can enable A record verification for all domain aliases if needed by setting ‘aifs_verify_ip_for_all_domain_alias’ to true.
3.6.4
Improved the detection process (and fixed a related bug) of the server’s IPv4 address where the WordPress website is hosted.
Updated the Freemius WordPress SDK to version 2.5.12.
3.6.3
Resolved a loading issue with the theme editor in the WordPress 6.3 dashboard when Force HTTPS is activated.
Enhanced IP address verification logic for all available domain aliases, as opposed to solely the ‘mail.’ alias in previous versions. Now, it filters out the domain alias (when generating the free TLS certificate) if its A record differs from the server’s IP address. Note that if the option ‘aifs_verify_ip_for_mail_dot_domain_alias_only’ is set to true, it will verify the IP address of the ‘mail.’ alias exclusively. However, if the option ‘aifs_selected_verification_method_dns01’ is set to true (making DNS-01 the default method), the above verification will not occur.
Updated the Freemius WordPress SDK to version 2.5.11.
3.6.2
Enhanced error handling logic for cases where after submitting a request to the ‘finalize’ URL, the response from Let’s Encrypt contains an empty ‘certificate’ key (location value).
Resolved an issue where the ‘finalize’ response in the cert free generation process was unintentionally removed from the database.
Introduced a new capability to activate the option ‘aifs_log_all_ca_server_response’ by accessing the following URL (login required):
http://www.example.com/wp-admin/admin.php?page=auto_install_free_ssl&log_all_ca_server_response=yes (Please replace ‘www.example.com’ with your domain name.)
3.6.1
Fixed the issue with character encoding for sending automated email notifications to support multilingual characters.
Added feature to write Let’s Encrypt free https cert server response details in the log files for every API call (if the option ‘aifs_log_all_ca_server_response’ is set to true). This will be helpful for troubleshooting.
Removed WordPress translation function __() for some error and exception messages (which are intended for developers) to make those English only.
Tested up to: 6.3
3.6.0
Improved the domainsArray() function that filters domain and server alias.
Created a new function to detect the IPv4 of the server.
Created a new function to get the confirmed and domain-specific free https ssl certificate directory.
Improved the function that detects the cPanel host and fixed a premium version-specific issue with it.
Updated the Freemius WordPress SDK to 2.5.10
Automatic entry of some initial data has been moved to the activation hook.
[Pro] Improved the function sslRequiredForFirstTime() called before generating a free web ssl certificate.
[Pro] Created a new function to detect if the given domains array has at least one Wildcard domain.
[Pro] Improved some free tls cert generation and installation logic.
[Pro] Added a feature that detects if the cPanel hostname was changed and updates it automatically.
[Pro] Added a feature that detects if cPanel credentials were changed and send notifications by email and admin notice.
[Pro] Improved the functionality to send notifications by email and admin notice if the encryption key was changed.
