Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/linguinecode/acme.sh-with-aws-iam-role
https://github.com/linguinecode/acme.sh-with-aws-iam-role
Last synced: about 1 month ago
JSON representation
- Host: GitHub
- URL: https://github.com/linguinecode/acme.sh-with-aws-iam-role
- Owner: LinguineCode
- Created: 2018-02-09T16:01:04.000Z (almost 7 years ago)
- Default Branch: master
- Last Pushed: 2018-02-14T19:13:32.000Z (almost 7 years ago)
- Last Synced: 2024-10-28T09:33:52.145Z (3 months ago)
- Language: Shell
- Size: 3.91 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# acme.sh-with-aws-iam-role
This is a wrapper docker image because [acme.sh](https://github.com/Neilpang/acme.sh) requires both `$AWS_ACCESS_KEY_ID` and `$AWS_SECRET_ACCESS_KEY` to be set. It does not use the AWS API and therefore it cannot make use of IAM roles itself. So we use `aws sts assume-role` to retrieve the credentials and then set them as environment variables prior to executing `acme.sh`.
This wrapper docker image will be rendered obsolete one day soon. Keep an eye on either/both of these feature requests:
1. https://github.com/Neilpang/acme.sh/issues/1238 (preferred)
1. https://github.com/aws/aws-cli/issues/1390
### Usage
```
sudo docker run -it \
-e AWS_ROLE_ARN="arn:aws:iam::123456789:role/myrole" \
-e AWS_ROLE_NAME="myrole" \
seanscottking\acme.sh-with-aws-iam-role \
--issue --dns dns_aws -d mywebsite.mydomain.com
```
### Credits
* https://github.com/Neilpang/acme.sh
* https://github.com/FernandoMiguel
* https://github.com/myoung34