https://github.com/go-acme/lego
Let's Encrypt/ACME client and library written in Go
https://github.com/go-acme/lego
acme acme-client certificate dns letsencrypt rfc8555 rfc8737 rfc8738 security tls
Last synced: 24 days ago
JSON representation
Let's Encrypt/ACME client and library written in Go
- Host: GitHub
- URL: https://github.com/go-acme/lego
- Owner: go-acme
- License: mit
- Created: 2015-06-08T00:36:41.000Z (almost 11 years ago)
- Default Branch: master
- Last Pushed: 2025-12-05T15:48:04.000Z (5 months ago)
- Last Synced: 2025-12-07T06:57:10.647Z (5 months ago)
- Topics: acme, acme-client, certificate, dns, letsencrypt, rfc8555, rfc8737, rfc8738, security, tls
- Language: Go
- Homepage: https://go-acme.github.io/lego/
- Size: 15.8 MB
- Stars: 9,066
- Watchers: 93
- Forks: 1,094
- Open Issues: 158
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
Awesome Lists containing this project
- awesomeLibrary - lego - Let's Encrypt/ACME client and library written in Go (语言资源库 / go)
- go-awesome - lego - Let's Encrypt client and ACME library (开源类库 / 未归类)
- awesome-go - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). (Security / HTTP Clients)
- awesome-go - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). Stars:`8.9K`. (Security / HTTP Clients)
- awesome-go - lego - Let's Encrypt client and ACME library (Other)
- awesome-go-info - lego
- awesome-go - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). (Security / HTTP Clients)
- awesome-go-extra - lego - 06-08T00:36:41Z|2022-08-25T14:22:29Z| (Security / HTTP Clients)
- awesome-go - go-acme/lego
- awesome-go - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). (Security / HTTP Clients)
- go-awesome-with-star-updatetime - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). (Security / HTTP Clients)
- StarryDivineSky - go-acme/lego - ALPN 挑战来验证域名所有权。它提供了一个命令行工具,方便用户直接使用,同时也提供 Go 库,方便集成到其他 Go 项目中。lego 支持通配符证书,可以保护整个域名及其所有子域名。它设计简洁易用,可以轻松地自动化证书管理流程,并支持证书吊销。lego 旨在简化 Let's Encrypt 证书的获取和管理,使 HTTPS 部署更加容易。 (网络信息服务 / 网络协议)
- my-awesome - go-acme/lego - client,certificate,dns,letsencrypt,rfc8555,rfc8737,rfc8738,security,tls pushed_at:2026-04 star:9.5k fork:1.1k Let's Encrypt/ACME client and library written in Go (Go)
- awesome-Char - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). (Security / HTTP Clients)
- awesome-go - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). (Security / HTTP Clients)
- awesome-go-with-stars - lego - 03-12 | (Security / HTTP Clients)
- awesome-go-cn - lego
- awesome-go - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). (Security / HTTP Clients)
- awesome-list - lego - acme | 4747 | (Go)
- fucking-awesome-go - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). (Security / HTTP Clients)
- awesome-ccamel - go-acme/lego - Let's Encrypt/ACME client and library written in Go (Go)
- awesome-starred - go-acme/lego - Let's Encrypt/ACME client and library written in Go (Go)
- my-awesome-starred - go-acme/lego - Let's Encrypt/ACME client and library written in Go (Go)
- zero-alloc-awesome-go - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). (Security / HTTP Clients)
- awesome-go-plus - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt).  (Security / HTTP Clients)
- awesome-go-cn - lego - acme/lego) [![godoc][D]](https://godoc.org/github.com/go-acme/lego) (安全 / HTTP客户端)
- awesome-go-cn - lego - acme/lego) [![godoc][D]](https://godoc.org/github.com/go-acme/lego) (安全 / HTTP客户端)
README
Automatic Certificates and HTTPS for everyone.
# Lego
[ACME](https://www.rfc-editor.org/rfc/rfc8555.html) client and library for Let's Encrypt and other ACME CAs written in Go.
[](https://pkg.go.dev/github.com/go-acme/lego/v4)
[](https://github.com//go-acme/lego/actions)
[](https://hub.docker.com/r/goacme/lego/)
lego is an independent, free, and open-source project, if you value it, consider [supporting it](https://donate.ldez.dev)! ❤️
Everybody thinks that the others will donate, but in the end, nobody does.
So if you think that lego is worth it, please consider [donating](https://donate.ldez.dev).
## Features
- ACME v2 [RFC 8555](https://www.rfc-editor.org/rfc/rfc8555.html)
- Support [RFC 8737](https://www.rfc-editor.org/rfc/rfc8737.html): TLS Application‑Layer Protocol Negotiation (ALPN) Challenge Extension
- Support [RFC 8738](https://www.rfc-editor.org/rfc/rfc8738.html): certificates for IP addresses
- Support [RFC 9773](https://www.rfc-editor.org/rfc/rfc9773.html): Renewal Information (ARI) Extension
- Support [draft-ietf-acme-profiles-00](https://datatracker.ietf.org/doc/draft-ietf-acme-profiles/): Profiles Extension
- Comes with about [180 DNS providers](https://go-acme.github.io/lego/dns)
- Register with CA
- Obtain certificates, both from scratch or with an existing CSR
- Renew certificates
- Revoke certificates
- Robust implementation of ACME challenges:
- HTTP (http-01)
- DNS (dns-01)
- TLS (tls-alpn-01)
- SAN certificate support
- [CNAME support](https://letsencrypt.org/2019/10/09/onboarding-your-customers-with-lets-encrypt-and-acme.html) by default
- [Custom challenge solvers](https://go-acme.github.io/lego/usage/library/writing-a-challenge-solver/)
- Certificate bundling
- OCSP helper function
## Installation
How to [install](https://go-acme.github.io/lego/installation/).
## Usage
- as a [CLI](https://go-acme.github.io/lego/usage/cli)
- as a [library](https://go-acme.github.io/lego/usage/library)
## Documentation
Documentation is hosted live at https://go-acme.github.io/lego/.
## DNS providers
Detailed documentation is available [here](https://go-acme.github.io/lego/dns).
If your DNS provider is not supported, please open an [issue](https://github.com/go-acme/lego/issues/new?assignees=&labels=enhancement%2C+new-provider&template=new_dns_provider.yml).
1cloud.ru
35.com/三五互联
Active24
Akamai EdgeDNS
Alibaba Cloud DNS
AlibabaCloud ESA
all-inkl
Alwaysdata
Amazon Lightsail
Amazon Route 53
Anexia CloudDNS
ANS SafeDNS
ArtFiles
ArvanCloud
Aurora DNS
Autodns
Axelname
Azion
Azure (deprecated)
Azure DNS
Baidu Cloud
Beget.com
Binary Lane
Bindman
Bluecat
Bluecat v2
BookMyName
Brandit (deprecated)
Bunny
Checkdomain
Civo
Cloud.ru
CloudDNS
Cloudflare
ClouDNS
CloudXNS (Deprecated)
ConoHa v2
ConoHa v3
Constellix
Core-Networks
CPanel/WHM
Czechia
DDnss (DynDNS Service)
Derak Cloud
deSEC.io
Designate DNSaaS for Openstack
Digital Ocean
DirectAdmin
DNS Made Easy
DNS Update (RFC2136)
DNSExit
dnsHome.de
DNSimple
DNSPod (deprecated)
Domain Offensive (do.de)
Domeneshop
DreamHost
Duck DNS
Dyn
DynDnsFree.de
Dynu
EasyDNS
EdgeCenter
Efficient IP
External program
F5 XC
freemyip.com
FusionLayer NameSurfer
G-Core
Gandi
Gandi Live DNS (v5)
Gigahost.no
Glesys
Go Daddy
Google Cloud
Google Domains
Gravity
Hetzner
Hosting.de
Hosting.nl
Hostinger
Hosttech
HTTP request
http.net
Huawei Cloud
Hurricane Electric DNS
HyperOne
IBM Cloud (SoftLayer)
IIJ DNS Platform Service
Infoblox
Infomaniak
Internet Initiative Japan
Internet.bs
INWX
Ionos
Ionos Cloud
IPv64
ISPConfig 3
ISPConfig 3 - Dynamic DNS (DDNS) Module
iwantmyname (Deprecated)
JD Cloud
Joker
Joohoi's ACME-DNS
KeyHelp
Leaseweb
Liara
Lima-City
Linode (v4)
Liquid Web
Loopia
LuaDNS
Mail-in-a-Box
ManageEngine CloudDNS
Manual
Metaname
Metaregistrar
mijn.host
Mittwald
myaddr.{tools,dev,io}
MyDNS.jp
MythicBeasts
Name.com
Namecheap
Namesilo
NearlyFreeSpeech.NET
Neodigit
Netcup
Netlify
Netnod
Nicmanager
NIFCloud
Njalla
Nodion
NS1
Octenium
Open Telekom Cloud
Oracle Cloud
OVH
plesk.com
Porkbun
PowerDNS
Rackspace
Rain Yun/雨云
RcodeZero
reg.ru
Regfish
RimuHosting
RU CENTER
Sakura Cloud
Scaleway
Selectel
Selectel v2
SelfHost.(de|eu)
Servercow
Shellrent
Simply.com
Sonic
Spaceship
Stackpath
Syse
Technitium
Tencent Cloud DNS
Tencent EdgeOne
Timeweb Cloud
TodayNIC/时代互联
TransIP
Ultradns
United-Domains
Variomedia
VegaDNS
Vercel
Versio.[nl|eu|uk]
VinylDNS
Virtualname
VK Cloud
Volcano Engine/火山引擎
Vscale
Vultr
webnames.ca
webnames.ru
Websupport
WEDOS
West.cn/西部数码
Yandex 360
Yandex Cloud
Yandex PDD
Zone.ee
ZoneEdit
If your DNS provider is not supported, please open an [issue](https://github.com/go-acme/lego/issues/new?assignees=&labels=enhancement%2C+new-provider&template=new_dns_provider.yml).