https://github.com/go-acme/lego
Let's Encrypt/ACME client and library written in Go
https://github.com/go-acme/lego
acme acme-client certificate dns letsencrypt rfc8555 rfc8737 rfc8738 security tls
Last synced: about 14 hours ago
JSON representation
Let's Encrypt/ACME client and library written in Go
- Host: GitHub
- URL: https://github.com/go-acme/lego
- Owner: go-acme
- License: mit
- Created: 2015-06-08T00:36:41.000Z (almost 10 years ago)
- Default Branch: master
- Last Pushed: 2025-04-29T11:57:53.000Z (4 days ago)
- Last Synced: 2025-05-01T13:11:37.425Z (2 days ago)
- Topics: acme, acme-client, certificate, dns, letsencrypt, rfc8555, rfc8737, rfc8738, security, tls
- Language: Go
- Homepage: https://go-acme.github.io/lego/
- Size: 18.8 MB
- Stars: 8,477
- Watchers: 95
- Forks: 1,063
- Open Issues: 159
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
Awesome Lists containing this project
- awesome-go - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). (Security / HTTP Clients)
- zero-alloc-awesome-go - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). (Security / HTTP Clients)
- awesomeLibrary - lego - Let's Encrypt/ACME client and library written in Go (语言资源库 / go)
- my-awesome - go-acme/lego - client,certificate,dns,letsencrypt,rfc8555,rfc8737,rfc8738,security,tls pushed_at:2025-04 star:8.4k fork:1.1k Let's Encrypt/ACME client and library written in Go (Go)
- awesome-ccamel - go-acme/lego - Let's Encrypt/ACME client and library written in Go (Go)
- my-awesome-starred - go-acme/lego - Let's Encrypt/ACME client and library written in Go (Go)
- awesome-repositories - go-acme/lego - Let's Encrypt/ACME client and library written in Go (Go)
- awesome-go - lego - Let's Encrypt client and ACME library (Other)
- awesome-list - lego - acme | 4747 | (Go)
- awesome-go - lego - Pure Go ACME client library and CLI tool (for use with Let's Encrypt). Stars:`8.4K`. (Security / HTTP Clients)
- awesome-go-extra - lego - 06-08T00:36:41Z|2022-08-25T14:22:29Z| (Security / HTTP Clients)
- awesome-starred - go-acme/lego - Let's Encrypt/ACME client and library written in Go (Go)
- awesome-starred - go-acme/lego - Let's Encrypt/ACME client and library written in Go (Go)
README
![]()
Automatic Certificates and HTTPS for everyone.
# Lego
Let's Encrypt client and ACME library written in Go.
[](https://pkg.go.dev/github.com/go-acme/lego/v4)
[](https://github.com//go-acme/lego/actions)
[](https://hub.docker.com/r/goacme/lego/)## Features
- ACME v2 [RFC 8555](https://www.rfc-editor.org/rfc/rfc8555.html)
- Support [RFC 8737](https://www.rfc-editor.org/rfc/rfc8737.html): TLS Application‑Layer Protocol Negotiation (ALPN) Challenge Extension
- Support [RFC 8738](https://www.rfc-editor.org/rfc/rfc8738.html): certificates for IP addresses
- Support [draft-ietf-acme-ari-03](https://datatracker.ietf.org/doc/draft-ietf-acme-ari/): Renewal Information (ARI) Extension
- Support [draft-aaron-acme-profiles-00](https://datatracker.ietf.org/doc/draft-aaron-acme-profiles/): Profiles Extension
- Comes with about [150 DNS providers](https://go-acme.github.io/lego/dns)
- Register with CA
- Obtain certificates, both from scratch or with an existing CSR
- Renew certificates
- Revoke certificates
- Robust implementation of ACME challenges:
- HTTP (http-01)
- DNS (dns-01)
- TLS (tls-alpn-01)
- SAN certificate support
- [CNAME support](https://letsencrypt.org/2019/10/09/onboarding-your-customers-with-lets-encrypt-and-acme.html) by default
- [Custom challenge solvers](https://go-acme.github.io/lego/usage/library/writing-a-challenge-solver/)
- Certificate bundling
- OCSP helper function## Installation
How to [install](https://go-acme.github.io/lego/installation/).
## Usage
- as a [CLI](https://go-acme.github.io/lego/usage/cli)
- as a [library](https://go-acme.github.io/lego/usage/library)## Documentation
Documentation is hosted live at https://go-acme.github.io/lego/.
## DNS providers
Detailed documentation is available [here](https://go-acme.github.io/lego/dns).
Active24
Akamai EdgeDNS
Alibaba Cloud DNS
all-inklAmazon Lightsail
Amazon Route 53
ArvanCloud
Aurora DNSAutodns
Axelname
Azure (deprecated)
Azure DNSBaidu Cloud
Bindman
Bluecat
BookMyNameBrandit (deprecated)
Bunny
Checkdomain
CivoCloud.ru
CloudDNS
Cloudflare
ClouDNSCloudXNS (Deprecated)
ConoHa
Constellix
Core-NetworksCPanel/WHM
Derak Cloud
deSEC.io
Designate DNSaaS for OpenstackDigital Ocean
DirectAdmin
DNS Made Easy
dnsHome.deDNSimple
DNSPod (deprecated)
Domain Offensive (do.de)
DomeneshopEasyDNS
Efficient IP
Epik
ExoscaleExternal program
F5 XC
freemyip.com
G-CoreGandi
Gandi Live DNS (v5)
Glesys
Go DaddyGoogle Cloud
Google Domains
Hetzner
Hosting.deHosttech
HTTP request
http.net
Huawei CloudHurricane Electric DNS
HyperOne
IBM Cloud (SoftLayer)
IIJ DNS Platform ServiceInfoblox
Infomaniak
Internet Initiative Japan
Internet.bsJoker
Joohoi's ACME-DNS
Liara
Lima-CityLinode (v4)
Liquid Web
Loopia
LuaDNSMail-in-a-Box
ManageEngine CloudDNS
Manual
MetanameMetaregistrar
mijn.host
Mittwald
myaddr.{tools,dev,io}MyDNS.jp
MythicBeasts
Name.com
NamecheapNamesilo
NearlyFreeSpeech.NET
Netcup
NetlifyNicmanager
NIFCloud
Njalla
NodionNS1
Open Telekom Cloud
Oracle Cloud
OVHplesk.com
Porkbun
PowerDNS
RackspaceRain Yun/雨云
RcodeZero
reg.ru
RegfishRFC2136
RimuHosting
Sakura Cloud
ScalewaySelectel
Selectel v2
SelfHost.(de|eu)
ServercowShellrent
Simply.com
Sonic
SpaceshipStackpath
Technitium
Tencent Cloud DNS
Timeweb CloudTransIP
UKFast SafeDNS
Ultradns
VariomediaVegaDNS
Vercel
Versio.[nl|eu|uk]
VinylDNSVK Cloud
Volcano Engine/火山引擎
Vscale
VultrWebnames
Websupport
WEDOS
West.cn/西部数码Yandex 360
Yandex Cloud
Yandex PDD
Zone.eeIf your DNS provider is not supported, please open an [issue](https://github.com/go-acme/lego/issues/new?assignees=&labels=enhancement%2C+new-provider&template=new_dns_provider.md).