autocertLego

Plugin replacement for golangs default autocert. It used the go-acme/lego library. This package does not need an seperated listen port. Its use the user defined TLS listener.

Why?

It works better with the Step CA and a custom (self-signed) CA

Example

whitelistedDomains := []string{
fmt.Sprintf("%s.%s.svc.%s", config.Service, config.Namespace, config.ClusterDomain),
fmt.Sprintf("%s.%s.svc", config.Service, config.Namespace),
fmt.Sprintf("%s.%s", config.Service, config.Namespace),
}

manager := &autocertLego.Manager{
EMail:      config.EMail,
Directory:  config.CAUrl,
HostPolicy: autocertLego.HostWhitelist(whitelistedDomains...),
Cache:   autocert.DirCache("./secret-dir/"),
}

srv := &http.Server{
Addr:      config.GetAddress(),
TLSConfig: manager.TLSConfig(),
Handler:   newRouter(config),
}

Name		Name	Last commit message	Last commit date
Latest commit History 8 Commits
README.md		README.md
acme-manager.go		acme-manager.go
cache.go		cache.go
client.go		client.go
go.mod		go.mod
go.sum		go.sum
provider.go		provider.go
user.go		user.go

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

acme-manager.go

acme-manager.go

cache.go

cache.go

client.go

client.go

go.mod

go.mod

go.sum

go.sum

provider.go

provider.go

user.go

user.go

Repository files navigation

autocertLego

Why?

Example

About

Releases

Packages

Languages

peterfromthehill/autocertLego

Folders and files

Latest commit

History

Repository files navigation

autocertLego

Why?

Example

About

Resources

Stars

Watchers

Forks

Languages