/acme_client

Primary LanguageGo

acme_client

Requests certificates from an acme compliant endpoint (letsencrypt)

##Quickstart

  1. Register Account Key (will create acme.ini in current working directory)
  • New Key:
    1. openssl genrsa 4096 > account_key.pem
    2. acme_client register pem account_key.pem
  • Existing Key:
    1. acme_client register jwk private_key.json
  1. edit acme.ini
  2. acme_client (preferably as cron or systemd timer)

##Configuration

internal use denotes a variable which will be written and read by acme_client

Variable Name Valid Location Description
ServerURL ROOT acme server address
ACCOUNT_KEY ROOT (internal use) json encoding of rsa.PrivateKey use acme_client register
HTTP01 Domain directory path where acme_client should place challenge files for authentication
SSLKEY Domain sslkey in pem format for csr generation
SSLECRT Domain sslcrt in pem format where acme_cient will place certificate
AUTH Domain (internal use) URL for auth object
CERTURL Domain (internal use) URL for existing certificate