https://github.com/sozu-proxy/sozu-acme

ACME (Let's Encrypt) automatic configuration for sōzu
https://github.com/sozu-proxy/sozu-acme

acme-client letsencrypt proxy

Last synced: 3 months ago
JSON representation

ACME (Let's Encrypt) automatic configuration for sōzu

• Host: GitHub
• URL: https://github.com/sozu-proxy/sozu-acme
• Owner: sozu-proxy
• License: agpl-3.0
• Archived: true
• Created: 2017-08-16T09:44:24.000Z (about 7 years ago)
• Default Branch: master
• Last Pushed: 2022-12-08T14:02:51.000Z (almost 2 years ago)
• Last Synced: 2024-06-20T19:28:19.184Z (5 months ago)
• Topics: acme-client, letsencrypt, proxy
• Language: Rust
• Size: 94.7 KB
• Stars: 27
• Watchers: 5
• Forks: 5
• Open Issues: 7
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        
# sōzu-acme

> This repository has been integrated into the main Sōzu repository. 

> It is available directly from the command line of Sōzu.

sozu-acme is a configuration tool for the

[sōzu HTTP reverse proxy](https://github.com/sozu-proxy/sozu)

that automates certificate requests from

[Let's Encrypt](https://letsencrypt.org/) or other

[ACME](https://tools.ietf.org/html/draft-ietf-acme-acme-07) enabled

certificate authorities.

This tool is in beta right now, don't hesitate to test it and report issues.

## Usage

```

sozu-acme --config      /path/to/sozu/config.toml # configuration file for sozu

          --certificate /path/to/cert.pem         # path to store new certificate

          --key         /path/to/key.pem          # path to store the key

          --chain       /path/to/chain.pem        # path to store the certificate chain

          --domain      example.com               # domain name for which the certificate will be generated

          --email       [email protected]       # registration email

          --id          app_example               # application id for sozu

          --http        1.2.3.4:80                # frontend HTTP address (for the challenge)

          --https       1.2.3.4:443               # frontend HTTPS address (for the challenge)

```

this tool will perform the following actions:

- contact Let's Encrypt

- retrieve the challenge data

- launch a web server for the HTTP challenge

- configure sōzu to redirect the challenge request to that web server

- start the HTTP challenge validation

- if the challenge was successful, write the certificate, chain and key to the specified paths

- remove the challenge web server from sōzu's configuration

## License

Copyright (C) 2017-2018 Geoffroy Couprie

This program is free software: you can redistribute it and/or modify it under

the terms of the GNU Affero General Public License as published by the Free

Software Foundation, version 3.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY;

without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

See the GNU Affero General Public License for more details.