A simple ACME v2 client for obtaining TLS certificates, built with Rust. Supports TLS-ALPN-01, HTTP-01, and DNS-01 challenges, integrates with rustls, and works with Let's Encrypt, Google Trust Services, and ZeroSSL.
- Comprehensive ACME v2 support (RFC 8555)
- TLS-ALPN-01, HTTP-01, and DNS-01 challenges
- rustls integration for memory-safe TLS
- File-based caching (default) and Redis caching (optional)
- Let's Encrypt by default, Google Trust Services and ZeroSSL via features
- CLI tool and library usage
- Production-ready with axum, Prometheus monitoring, and tracing
Add to your Cargo.toml:
[dependencies]
acmex = "0.0.1"For Redis support:
[dependencies]
acmex = { version = "0.0.1", features = ["redis"] }use acmex::{AcmeClient, AcmeConfig, ChallengeType};
#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
let config = AcmeConfig::new(vec!["example.com".to_string()])
.contact(vec!["mailto:user@example.com".to_string()])
.prod(false);
let client = AcmeClient::new(config);
let (cert, key) = client.provision_certificate(ChallengeType::TlsAlpn01, None).await?;
// Use cert and key with rustls
Ok(())
}cargo run -- --domains example.com --email user@example.com --cache-dir ./acmex_cacheWith Redis:
cargo run --features redis -- --domains example.com --email user@example.com --redis-url redis://127.0.0.1:6379This project is licensed under either of
at your option.
You may choose either license to use this project. Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in the work by you shall be dual licensed as above, without any additional terms or conditions.
See the LICENSE-MIT and LICENSE-APACHE files for details.
