/vpki-proxy

A reverse proxy that can leverage vault or lets-encrypt as a CA for certificate creation
  1. Go 100.0%
Switch branches/tags
Nothing to show
Find file
Clone or download

Clone with HTTPS

Use Git or checkout with SVN using the web URL.

Download ZIP

Launching GitHub Desktop...

If nothing happens, download GitHub Desktop and try again.

Launching GitHub Desktop...

If nothing happens, download GitHub Desktop and try again.

Launching Xcode...

If nothing happens, download Xcode and try again.

Launching Visual Studio...

If nothing happens, download the GitHub extension for Visual Studio and try again.

Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitignore
LICENSE
README.md
config-example.yml
config.go
main.go

README.md

vpki-proxy

vpki-proxy is a quick & dirty configurable TLS proxy which uses Let's Encrypt (via rsc.io/letsencrypt) to retrieve certificates for the services. The usage of the vpki library means that it should be trivial to set up vault as a cert provider as well. I intend to do this in the near term.

This proxy will also export Prometheus metrics if an IP prefix is given. This should be extended in the future to allow more flexibility.

Setup

go get -u astuart.co/vpki-proxy

See example config for an example configuration.

Usage

vpki-proxy -metric-ip="192.168.1.2" config.yml