https://github.com/mrtazz/certcal

provide an iCal web feed for certificate expiration
https://github.com/mrtazz/certcal

calendar certificates golang security ssl tls

Last synced: about 1 year ago
JSON representation

provide an iCal web feed for certificate expiration

• Host: GitHub
• URL: https://github.com/mrtazz/certcal
• Owner: mrtazz
• License: mit
• Created: 2022-02-20T13:35:18.000Z (over 4 years ago)
• Default Branch: main
• Last Pushed: 2022-02-26T17:24:52.000Z (over 4 years ago)
• Last Synced: 2025-04-15T15:12:24.991Z (about 1 year ago)
• Topics: calendar, certificates, golang, security, ssl, tls
• Language: Go
• Homepage:
• Size: 24.4 KB
• Stars: 6
• Watchers: 2
• Forks: 0
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# certcal

Provide an iCal web feed for certificate expiry.

## Usage

There are a couple of ways to run this

### Standalone

You can download one of the binaries and run it as a standalone:

```shell

% ./certcal serve --help

Usage: certcal serve --hosts=HOSTS,... --interval="24h"

run the server.

Flags:

  -h, --help               Show context-sensitive help.

      --hosts=HOSTS,...    hosts to check certs for ($CERTCAL_HOSTS).

      --interval="24h"     interval in which to check certs ($CERTCAL_INTERVAL)

      --port=3000          port for the server to listen on ($PORT)

% PORT=3000 CERTCAL_INTERVAL=5h CERTCAL_HOSTS="unwiredcouch.com" ./certcal

```

### As part of an existing http mux

You can include the handler in your existing mux, something along the lines

of:

```go

import (

  "github.com/mrtazz/certcal/handler"

  "github.com/mrtazz/certcal/hosts"

  "net/http"

  "time"

)

func Run() {

  ...

  hosts.AddHosts([]string{"unwiredcouch.com"})

  hosts.UpdateEvery(5 * time.Hour)

  http.HandleFunc("/hosts", handler.Handler)

  http.ListenAndServe(":3000", nil)

}

```

### Via Docker

There is a docker image as well that you can use:

```sh

docker pull ghcr.io/mrtazz/certcal

```

## FAQ

### Shouldn't certs renew automatically?

Probably. But sometimes they aren't.

### Shouldn't this be an alert somewhere?

Maybe, up to you.

### Old expiry events are disappearing!

That is by design. The UID of the `VEVENT` is the `sha256sum` of the summary

of the event. Because generally if the cert got renewed the old event is just

cruft.

## Inspiration

[genuinetools/certok](https://github.com/genuinetools/certok) inspired this