yourivw/LEClient

Multiple accounts

Closed this issue · 2 comments

viharm commented

This is a good library and provides excellent abstraction for development work.

I needed several trials to get through a full validation cycle, but that may be my own limitation.

I am creating an app which utilises this library, and want to include functionality for multiple Let's Encrypt accounts.

Currently, I believe the single-account functionality leads to the same key pair being used for all $emails specified in the class initiation and account functions

Is there a way to store multiple accounts keys? Probably based on email address? Like...
user-domain-tld_privkey.pkcs8.pem
user-domain-tld_pubkey.pem

viharm commented

I guess the ability to specify an account key will suffice

viharm commented

This functionality is built into the client constructor at

LEClient/src/LEClient.php

Line 67 in a9ce9f2

public function __construct($email, $acmeURL = LEClient::LE_PRODUCTION, $log = LEClient::LOG_OFF, $certificateKeys = 'keys/', $accountKeys = '__account/')

Fourth and fifth arguments are for the certificate keys and for the account keys respectively

The constructor checks if the certificate keys argument is an array at

LEClient/src/LEClient.php

Line 104 in a9ce9f2

elseif (is_array($certificateKeys))
, and then check for the following keys

* `certificate`
* `private_key`
* `order`
* `public_key`

Similarly it checks if the account keys argument is an array at

LEClient/src/LEClient.php

Line 138 in a9ce9f2

elseif (is_array($accountKeys))
, and then checks for the following array keys

* `private_key`
* `public_key`

This allows significant flexibility as my app can have multiple accounts and specify which account to query.