Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/razonyang/tencent-cdn-cert-manager
Tencent CDN Cert Manager 腾讯云 CDN SSL 证书管理
https://github.com/razonyang/tencent-cdn-cert-manager
cert-manager letsencrypt tencent-cloud-cdn
Last synced: about 1 month ago
JSON representation
Tencent CDN Cert Manager 腾讯云 CDN SSL 证书管理
- Host: GitHub
- URL: https://github.com/razonyang/tencent-cdn-cert-manager
- Owner: razonyang
- License: mit
- Created: 2022-05-19T11:02:26.000Z (over 2 years ago)
- Default Branch: main
- Last Pushed: 2022-07-24T02:49:48.000Z (over 2 years ago)
- Last Synced: 2024-04-14T02:23:39.955Z (7 months ago)
- Topics: cert-manager, letsencrypt, tencent-cloud-cdn
- Language: Go
- Homepage:
- Size: 17.6 KB
- Stars: 1
- Watchers: 3
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# Tencent CDN Cert Manager
Manage your Tencent cloud CDN certificates, including obtaining and renewing certificates automatically.
## Environments Variables
The program will load variables from `.env` of current working directory.
> You can find all variables on [.env.example](.env.example).
| Name | Default | Description | References |
|---|---|---|---|
| `TENCENT_REGION` | - | Tencent Region | https://pkg.go.dev/github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common/regions
| `TENCENT_API_SECRET_ID` | - | Tencent API secret Id |
| `TENCENT_API_SECRET_KEY` | - | Tencent API secret key |
| `CERT_MANAGER_DOMAINS` | - | Tencent CDN domains, separated by commas |
| `CERT_MANAGER_EMAIL` | - | Your email address|
| `CA_DIR_URL` | `https://acme-staging-v02.api.letsencrypt.org/directory` | CA directory URL | Replace it with `https://acme-v02.api.letsencrypt.org/directory` in production
| `CERT_MANAGER_INTERVAL` | `@hourly` | The cron job interval | https://pkg.go.dev/github.com/robfig/cron#hdr-Usage
| `CERT_MANAGER_DAYS` | `30` | Renew certificates that expires within `n` days |
| `DNS_PROVIDER` | - | `cloudlfare`, `alidns` or `tencentcloud` | DNS provider |
| **DNS PROVIDER VARIABLES** | - | | [`cloudlfare`](https://go-acme.github.io/lego/dns/cloudflare/), [`alidns`](https://go-acme.github.io/lego/dns/alidns/) or [`tencentcloud`](https://go-acme.github.io/lego/dns/tencentcloud/)
## Testing
I recommend testing you config with `CA_DIR_URL = https://acme-staging-v02.api.letsencrypt.org/directory`, in order to avoid the rate limit problem of Let's Encrypt.
And then change `CA_DIR_URL` as `https://acme-v02.api.letsencrypt.org/directory` on production.
## Docker
```bash
$ docker run \
-v "$PWD/.env:/app/.env:ro" \
-v data:/app/data \
--name tccm \
razonyang/tencent-cdn-cert-manager
```
- `/app/data` stores user private keys and SSL certificates that used to renew certificates.
> You can also specify variables via `-e` instead of mounting `.env` file.