1 Star 0 Fork 0

黄家垚 / letsautoencrypt

Create your Gitee Account
Explore and code with more than 6 million developers,Free private repositories !:)
Sign up
Clone or download
Cancel
Notice: Creating folder will generate an empty file .keep, because not support in Git
Loading...
README.md

Let's auto encrypt

Overview

Use acme.sh to auto sign https certs from Lets Encrypt.

Thanks to

Related article: https://imququ.com/post/letsencrypt-certificate.html
This project use script from https://github.com/Neilpang/acme.sh

Installation

ArchLinux

git clone https://github.com/alienhjy/letsautoencrypt.git
cd letsautoencrypt
makepkg
sudo pacman -U letsautoencrypt-*.pkg.tar.xz

Usage

For nginx

Step 1

Install letsautoencrypt.

Step 2

Edit /etc/letsautoencrypt/env.conf, add your domains to SubjectAltName according to the given format. Change NGINX_INCLUDE_CONF, and make sure ${NGINX_INCLUDE_CONF} is under your nginx conf dir. Edit your nginx config file, add include https-acme.conf; to the http sesson of nginx. Do not reload nginx now.

Step 3

Run:

systemctl daemon-reload
systemctl start letsautoencrypt.service
systemctl start letsautoencrypt.timer
systemctl enable letsautoencrypt.timer

Step 4 (optional)

For update domain list, just update SubjectAltName in /etc/letsautoencrypt/env.conf, then:

systemctl start letsautoencrypt.service

For other http server

Step 1

Stop your http server which listening port :80.

Step 2

Edit /etc/letsautoencrypt/env.conf, add your domains to SubjectAltName according to the given format.

Step 3

Run:

## replace ${INSTALL_DIR} to your letsautoencrypt dir.
${INSTALL_DIR}/letsautoencrypt.sh

Step 4

Add ssl config to the config file of your http server.

ssl_certificate => /var/lib/letsautoencrypt/acme/yoursite.com/fullchain.cer
ssl_certificate_key => /var/lib/letsautoencrypt/domain.key

Then, reload or restart your http server.

Step 5 (optional)

For update domain list, just stop your http server, and update SubjectAltName in /etc/letsautoencrypt/env.conf, then repeat step 3 and step 4.

Comments ( 0 )

Sign in for post a comment

About

使用来自 <https://github.com/gheift/letsencrypt.sh> 的脚本,自动申请 <https://letsencrypt.org/> 提供的 https 证书 spread retract
Cancel

Releases

No release

Contributors

All

Activities

load more
can not load any more
Shell
1
https://gitee.com/aliendata/letsautoencrypt.git
git@gitee.com:aliendata/letsautoencrypt.git
aliendata
letsautoencrypt
letsautoencrypt
master

Search