A reverse proxy that can leverage vault or lets-encrypt as a CA for certificate creation
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitignore
LICENSE
README.md
config-example.yml
config.go
main.go

README.md

vpki-proxy

vpki-proxy is a quick & dirty configurable TLS proxy which uses Let's Encrypt (via rsc.io/letsencrypt) to retrieve certificates for the services. The usage of the vpki library means that it should be trivial to set up vault as a cert provider as well. I intend to do this in the near term.

This proxy will also export Prometheus metrics if an IP prefix is given. This should be extended in the future to allow more flexibility.

Setup

go get -u astuart.co/vpki-proxy

See example config for an example configuration.

Usage

vpki-proxy -metric-ip="192.168.1.2" config.yml