Wrap dehydrated & lexicon by docker for Let's Encrypt & ACME challenge.
Automatic update certificates every month to do DNS challenge by API. Only support AWS route53 currently
-
Add
config/aws
for awscli, the folder need includeconfig
&credentials
config example:
[default] output = json region = us-west-2
credentials example:
[default] aws_access_key_id = {YOUR-ACCESS-KEY} aws_secret_access_key = {SECRET-ACCESS-KEY}
-
Add config/domains.txt, for the domain you want to applied example:
*.example.com > star_example_com
use docker-compose to build and run in background cronjob
$ docker-compose build
$ docker-compose up -d
Check and update at 1st & 15th day every month
./accounts
the register account information./certs
the certificates result it could be apply in Nginx like below
server {
# ...
ssl_certificate {MOUNT-DIR}/certs/fullchain.pem;
ssl_certificate_key {MOUNT-DIR}/certs/privkey.pem;
}
Modify docker-compose.yml, un-comment volumes bind on ./config/dehydrated.stage.config
to use stage CA to apply Let's Encrypt