Skip to content

letsencrypt/acme client implemented as a shell-script, sa-lets-encrypt drop-in replacement

License

Notifications You must be signed in to change notification settings

softasap/sa-acme-sh

Repository files navigation

sa-acme-sh

Build Status

Example of usage:

Simple

     - {
         role: "sa-acme-sh",
         option_setup_cron: true
       }

Advanced

vars:

  my_le_config_properties: 
    - {regexp: "^export GD_Key=*", line: "export GD_Key=OHOH"}
    - {regexp: "^export GD_Secret=*", line: "export GD_Secret=AHAH"} 

  roles:
    - {
        role: "sa-acme-sh",

        option_setup_cron: true,

        le_wellknown_path: "/var/www/.well-known/acme-challenge",
        acmesh_version: 2.8.0,
        le_config_properties: "{{ my_le_config_properties }}" 
      }

Issuing certificate example:

Certificate issuing via godaddy provider

export GD_Key=***
export GD_Secret=***
acme.sh --issue -d voronenko.net -d www.voronenko.net --dns dns_gd

Listing certificates

acme.sh --list
Main_Domain    KeyLength  SAN_Domains        Created                       Renew
voronenko.net  ""         www.voronenko.net  Wed Mar  6 12:37:30 UTC 2019  Sun May  5 12:37:30 UTC 2019

Certificate issuing using .wellknown

nginx.conf

location /.well-known/acme-challenge/ {
  default_type "text/plain";
  root /var/www/;
}
acme.sh -d voronenko.net -d www.voronenko.net --webroot /var/www/ --issue

Usage with ansible galaxy workflow

If you installed the sa-acme-sh role using the command

ansible-galaxy install softasap.sa-acme-sh

the role will be available in the folder library/softasap.sa-acme-sh Please adjust the path accordingly.

     - {
         role: "softasap.sa-acme-sh"
       }

Copyright and license

Code is dual licensed under the [BSD 3 clause] (https://opensource.org/licenses/BSD-3-Clause) and the [MIT License] (http://opensource.org/licenses/MIT). Choose the one that suits you best.

Reach us:

Subscribe for roles updates at [FB] (https://www.facebook.com/SoftAsap/)

Join gitter discussion channel at Gitter

Discover other roles at http://www.softasap.com/roles/registry_generated.html

visit our blog at http://www.softasap.com/blog/archive.html

About

letsencrypt/acme client implemented as a shell-script, sa-lets-encrypt drop-in replacement

Topics

Resources

License

Stars

Watchers

Forks

Packages

No packages published