Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

https://github.com/josegonzalez/dokku-global-cert

allows setting a global certificate for applications
https://github.com/josegonzalez/dokku-global-cert

Last synced: 3 months ago
JSON representation

allows setting a global certificate for applications

Host: GitHub
URL: https://github.com/josegonzalez/dokku-global-cert
Owner: josegonzalez
License: mit
Created: 2016-06-28T19:34:58.000Z (almost 8 years ago)
Default Branch: master
Last Pushed: 2023-05-30T01:26:03.000Z (about 1 year ago)
Last Synced: 2024-01-21T21:03:58.134Z (5 months ago)
Language: Shell
Homepage:
Size: 30.3 KB
Stars: 20
Watchers: 4
Forks: 4
Open Issues: 5
Metadata Files:
- Readme: README.md
- License: LICENSE.txt

Lists

awesome-stars - josegonzalez/dokku-global-cert - allows setting a global certificate for applications (Shell)

README

        # dokku-global-cert [![Build Status](https://travis-ci.org/josegonzalez/dokku-global-cert.svg?branch=master)](https://travis-ci.org/josegonzalez/dokku-global-cert)

Manages a global certificate for dokku.

## requirements

- dokku 0.7.0+

- docker 1.12.x

## installation

```shell

dokku plugin:install https://github.com/josegonzalez/dokku-global-cert.git global-cert

```

## commands

```shell

global-cert:generate        # Generate a key and certificate signing request (and self-signed certificate)

global-cert:remove          # Remove the SSL configuration

global-cert:report [] # Displays a global ssl report

global-cert:set CRT KEY     # Sets a global ssl endpoint. Can also import from a tarball on stdin

```

## usage

While Dokku supports per-application SSL certificates, it does not natively provide global certificate setting. This plugin allows setting a global certificate, which will then be imported for all new applications. The interface is similar to that of the official `certs` plugin, though with minor changes to reflect it's usage.

### certificate setting

The `global-cert:set` command can be used to push a `tar` containing a certificate `.crt` and `.key` file to a single application. The command should correctly handle cases where the `.crt` and `.key` are not named properly or are nested in a subdirectory of said `tar` file. You can import it as follows:

```shell

# if your `.crt` file came alongside a `.ca-bundle`, you'll want to 

# concatenate those into a single `.crt` file before adding it to the `.tar`.

cat yourdomain_com.crt yourdomain_com.ca-bundle > server.crt

# tar the certificates

tar cvf cert-key.tar server.crt server.key

dokku global-cert:set < cert-key.tar

```

You can also import certs without using `stdin`, and instead specifying a full path on disk:

```shell

dokku global-cert:set server.crt server.key

```

### certificate removal

The global certificate can be removed with the following command:

```shell

dokku global-cert:remove

```

If the global certificate is removed, existing applications will continue to have the global certificate set.