https://github.com/leandromoreira/tls_certificate_generation
Use temporary Amazon EC2 / Digital Ocean cloud machines to get / renew letsencrypt certificates
https://github.com/leandromoreira/tls_certificate_generation
aws certificates digital-ocean letsencrypt
Last synced: 5 months ago
JSON representation
Use temporary Amazon EC2 / Digital Ocean cloud machines to get / renew letsencrypt certificates
- Host: GitHub
- URL: https://github.com/leandromoreira/tls_certificate_generation
- Owner: leandromoreira
- License: bsd-3-clause
- Created: 2016-11-06T01:39:10.000Z (over 8 years ago)
- Default Branch: master
- Last Pushed: 2017-02-04T17:03:11.000Z (over 8 years ago)
- Last Synced: 2025-01-13T22:50:21.270Z (5 months ago)
- Topics: aws, certificates, digital-ocean, letsencrypt
- Language: Shell
- Homepage: https://github.com/leandromoreira/tls_certificate_generation
- Size: 11.7 KB
- Stars: 28
- Watchers: 4
- Forks: 8
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
[](https://img.shields.io/badge/license-BSD--3--Clause-blue.svg)
# Create / Renew [letsencrypt](https://letsencrypt.org) certificates using temporary [Amazon EC2](https://aws.amazon.com/ec2/) / [Digital Ocean](https://www.digitalocean.com/) machines #
### Steps ###
* Make sure you have docker installed
* Configure your domains / email at `nginx/sites-enabled/site.conf`
* For AWS usage
* Run `EC2_AKEY=xxx EC2_SKEY=yyy EC2_VPCID=kkk ./renew.sh` and follow the steps (like configuring DNS and etc)
* For DO usage
* Run `DO_ATOKEN=xxx ./renew.sh digitalocean` and follow the steps (like configuring DNS and etc)
* Get the certificates `privkey1.pem` and `fullchain1.pem`.### Bonus round ###
You can also transfer the downloaded certificates to your site, there is an opinionated script `upload_certs_on_nginx`.
* Make sure you have bound to your docker machine already (ex:`eval "$(docker-machine --storage-path /usr/local/share/web/docker_machines/ env mysite)"`)
* Double check the content of `upload_certs_on_nginx`, it assumes: container name, certificate path and others.