https://github.com/tailscale/scertec

ACME client daemon that puts fresh HTTPS certs in setec, and client to get them out of at serving time
https://github.com/tailscale/scertec

Last synced: about 1 year ago
JSON representation

ACME client daemon that puts fresh HTTPS certs in setec, and client to get them out of at serving time

• Host: GitHub
• URL: https://github.com/tailscale/scertec
• Owner: tailscale
• License: bsd-3-clause
• Created: 2024-02-12T23:29:46.000Z (over 2 years ago)
• Default Branch: main
• Last Pushed: 2024-10-11T17:13:33.000Z (over 1 year ago)
• Last Synced: 2025-04-11T16:18:52.451Z (about 1 year ago)
• Language: Go
• Size: 39.1 KB
• Stars: 32
• Watchers: 18
• Forks: 1
• Open Issues: 2
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# scertec

This is **scertec**, a Let's Encrypt ACME client that stores certs in [setec](https://github.com/tailscale/setec/) and a Go client library that reads those certs back out of setec at serving time via a `tls.Config.GetCertificate` hook.

It only supports ACME DNS challenges using Amazon Route53.

Directories involved:

 * `.` (package `scertec`): the client library that gets certs from setec

 * `scertecd` (package `scertecd`): the ACME client code that runs either in the foreground once or in the background as an HTTP server, keeping the certs refreshed in setec

 * `cmd/scertecd`: a little `package main` wrapper around the earlier item.