Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/sozu-proxy/sozu-acme
ACME (Let's Encrypt) automatic configuration for sōzu
https://github.com/sozu-proxy/sozu-acme
acme-client letsencrypt proxy
Last synced: 3 months ago
JSON representation
ACME (Let's Encrypt) automatic configuration for sōzu
- Host: GitHub
- URL: https://github.com/sozu-proxy/sozu-acme
- Owner: sozu-proxy
- License: agpl-3.0
- Archived: true
- Created: 2017-08-16T09:44:24.000Z (about 7 years ago)
- Default Branch: master
- Last Pushed: 2022-12-08T14:02:51.000Z (almost 2 years ago)
- Last Synced: 2024-06-20T19:28:19.184Z (5 months ago)
- Topics: acme-client, letsencrypt, proxy
- Language: Rust
- Size: 94.7 KB
- Stars: 27
- Watchers: 5
- Forks: 5
- Open Issues: 7
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# sōzu-acme
> This repository has been integrated into the main Sōzu repository.
> It is available directly from the command line of Sōzu.sozu-acme is a configuration tool for the
[sōzu HTTP reverse proxy](https://github.com/sozu-proxy/sozu)
that automates certificate requests from
[Let's Encrypt](https://letsencrypt.org/) or other
[ACME](https://tools.ietf.org/html/draft-ietf-acme-acme-07) enabled
certificate authorities.This tool is in beta right now, don't hesitate to test it and report issues.
## Usage
```
sozu-acme --config /path/to/sozu/config.toml # configuration file for sozu
--certificate /path/to/cert.pem # path to store new certificate
--key /path/to/key.pem # path to store the key
--chain /path/to/chain.pem # path to store the certificate chain
--domain example.com # domain name for which the certificate will be generated
--email [email protected] # registration email
--id app_example # application id for sozu
--http 1.2.3.4:80 # frontend HTTP address (for the challenge)
--https 1.2.3.4:443 # frontend HTTPS address (for the challenge)
```this tool will perform the following actions:
- contact Let's Encrypt
- retrieve the challenge data
- launch a web server for the HTTP challenge
- configure sōzu to redirect the challenge request to that web server
- start the HTTP challenge validation
- if the challenge was successful, write the certificate, chain and key to the specified paths
- remove the challenge web server from sōzu's configuration## License
Copyright (C) 2017-2018 Geoffroy Couprie
This program is free software: you can redistribute it and/or modify it under
the terms of the GNU Affero General Public License as published by the Free
Software Foundation, version 3.This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY;
without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
See the GNU Affero General Public License for more details.