Skip to content
/ sslsaas-go Public

Sample code that demonstrates how to issue SSL certificates for custom hostnames using Cloudflare's golang library.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

prdonahue/sslsaas-go

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
README.md
README.md
 
 
issuecert.go
issuecert.go
 
 

Repository files navigation

sslsaas-go

Sample code that demonstrates how to issue SSL certificates for custom hostnames using Cloudflare's golang library.

Installation

You need a working Go environment with Cloudflare's go library installed.

go get github.com/cloudflare/cloudflare-go

Usage

You'll then want to set environment variables with your Cloudflare username and API key:

export CF_API_KEY=YOURKEY
export CF_API_EMAIL=YOUREMAIL

Next, because this code generates hostnames based on the current time, you'll need to provide the (sub)domain on which these hosts should sit. To facilitate testing, it is recommended that you configure your "customer's" authoritative DNS provider to do wildcard resolution to your Managed CNAME zone.

For example, *.customer-domain.com should resolve to whitelabel.yourzone.com.

You should also explicitly specifiy the zone in which the whitelabel hostname resides as this is how the program checks to see that the auto-generated "customer" hostname points in to your domain correctly (via CNAME).

export CUSTOMERDOMAIN=custer-domain.com
export WHITELABELZONE=yourzone.com
export WHITELABELHOST=whitelabel.yourzone.com

Then, to run, simply execute the program:

go run issuecert.go

Example Output

$ go run issuecert.go
Acquiring certificate for ex2017-10-15-094853.somuch.tls.fun.
API call to issue certificate returned with initial SSL status ofpending_validation (hostname ID=2587fd4e-215a-4b3c-82ff-ab07ac1e08fd).

Polling on certificate status indefinitely (will sleep between calls):
[20:48:57] Checking on certificate status of ex2017-10-15-094853.mydomain.com.. pending_validation
[20:49:19] Checking on certificate status of ex2017-10-15-094853.mydomain.com.. pending_deployment
[20:49:40] Checking on certificate status of ex2017-10-15-094853.mydomain.com.. pending_deployment
[20:50:00] Checking on certificate status of ex2017-10-15-094853.mydomain.com.. pending_deployment
[20:50:21] Checking on certificate status of ex2017-10-15-094853.mydomain.com.. active

Certificate has been issued and is live on Cloudflare's edge:
Certificate Details:
----------------------------------------------------------------------
Serial Number        13059011992128372826617107584774329703
Signature Algorithm  ECDSA-SHA256        
Issue Date           2017-10-15 00:00:00 +0000 UTC
Expiration Date      2018-10-15 12:00:00 +0000 UTC
Common Name          ex2017-10-15-094853.mydomain.com
Subject Alt. Name(s) [ex2017-10-15-094853.mydomain.com]
----------------------------------------------------------------------

About

Sample code that demonstrates how to issue SSL certificates for custom hostnames using Cloudflare's golang library.

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages