potyarkin/lego
1
0
Fork 0
forked from TrueCloudLab/lego
Code Pull requests Activity
WIP: Let's Encrypt/ACME client and library written in Go
1537 commits 3 branches 66 tags 22 MiB
Find a file
Vitaliy Potyarkin 9ff9d5be25 frostfs: Fix invalid signatures issued by key from json 
Ephemeral keys worked fine while keys loaded from filesystem would
generate invalid signatures. This was caused by destroying private key
material during calls to Wallet.Close() and Account.Close(). Since these
calls do nothing except wiping the private key, we omit them now.
Responsibility for private key security is delegated to caller of getKey()

Signed-off-by: Vitaliy Potyarkin <v.potyarkin@yadro.com>
2024-10-16 12:05:26 +03:00
.github fix: go1.22 compatibility (#2295) 2024-10-06 20:01:31 +02:00
acme Prepare release v4.19.2 2024-10-06 20:10:36 +02:00
certcrypto chore: update to go1.22 (#2144) 2024-03-20 20:30:35 +01:00
certificate fix(ari): avoid Int63n panic in ShouldRenewAt() (#2246) 2024-08-21 22:33:28 +00:00
challenge fix: go1.22 compatibility (#2295) 2024-10-06 20:01:31 +02:00
cmd Add HTTP-01 solver with FrostFS backend 2024-10-15 16:52:34 +03:00
docs Add HTTP-01 solver with FrostFS backend 2024-10-15 16:52:34 +03:00
e2e feat: add dns.propagation-rns option (#2284) 2024-09-26 21:02:39 +02:00
internal fix: follow Go convention about generated comment (#2292) 2024-10-05 15:13:40 +02:00
lego feat: expose certificates pool creation (#2210) 2024-06-13 21:10:59 +00:00
log log: use stderr instead of stdout. (#1402) 2021-05-14 17:51:05 +02:00
platform chore: update to go1.22 (#2144) 2024-03-20 20:30:35 +01:00
providers frostfs: Fix invalid signatures issued by key from json 2024-10-16 12:05:26 +03:00
registration chore: update linter (#2046) 2023-10-31 14:08:50 +01:00
.dockerignore Automatic generation of documentation (#818) 2019-03-08 19:47:06 +01:00
.gitcookies.enc Add workaround for go.googlesource.com rate limit 2016-03-22 01:46:32 +01:00
.gitignore Refactor the core of the lib (#700) 2018-12-06 22:50:17 +01:00
.golangci.yml chore: update dependencies (#2272) 2024-09-14 14:26:25 +02:00
.goreleaser.yml fix: restore Solaris (#2217) 2024-06-29 18:50:36 +02:00
buildx.Dockerfile chore: use buildx for cross-platform image builds 2023-02-26 14:27:16 +01:00
CHANGELOG.md Prepare release v4.19.2 2024-10-06 20:10:36 +02:00
CONTRIBUTING.md chore: fix grammar and typo (#1978) 2023-07-29 12:59:24 +02:00
Dockerfile chore: use buildx for cross-platform image builds 2023-02-26 14:27:16 +01:00
go.mod Open NEO wallet from file system 2024-10-15 15:45:50 +03:00
go.sum Open NEO wallet from file system 2024-10-15 15:45:50 +03:00
LICENSE Lego version 0.4.0 2017-07-13 03:17:00 +02:00
Makefile chore: use buildx for cross-platform image builds 2023-02-26 14:27:16 +01:00
README.md Add DNS provider for SelfHost.(de|eu) (#2278) 2024-09-20 13:46:38 +02:00

README.md

lego logo

Automatic Certificates and HTTPS for everyone.

Lego

Let's Encrypt client and ACME library written in Go.

Go Reference Build Status Docker Pulls

Features

  • ACME v2 RFC 8555
    • Support RFC 8737: TLS Application‑Layer Protocol Negotiation (ALPN) Challenge Extension
    • Support RFC 8738: certificates for IP addresses
    • Support draft-ietf-acme-ari-03: Renewal Information (ARI) Extension
  • Register with CA
  • Obtain certificates, both from scratch or with an existing CSR
  • Renew certificates
  • Revoke certificates
  • Robust implementation of all ACME challenges
    • HTTP (http-01)
    • DNS (dns-01)
    • TLS (tls-alpn-01)
  • SAN certificate support
  • CNAME support by default
  • Comes with multiple optional DNS providers
  • Custom challenge solvers
  • Certificate bundling
  • OCSP helper function

Installation

How to install.

Usage

Documentation

Documentation is hosted live at https://go-acme.github.io/lego/.

DNS providers

Detailed documentation is available here.
Akamai EdgeDNS Alibaba Cloud DNS all-inkl Amazon Lightsail
Amazon Route 53 ArvanCloud Aurora DNS Autodns
Azure (deprecated) Azure DNS Bindman Bluecat
Brandit Bunny Checkdomain Civo
Cloud.ru CloudDNS Cloudflare ClouDNS
CloudXNS ConoHa Constellix CPanel/WHM
Derak Cloud deSEC.io Designate DNSaaS for Openstack Digital Ocean
DirectAdmin DNS Made Easy dnsHome.de DNSimple
DNSPod (deprecated) Domain Offensive (do.de) Domeneshop DreamHost
Duck DNS Dyn Dynu EasyDNS
Efficient IP Epik Exoscale External program
freemyip.com G-Core Gandi Live DNS (v5) Gandi
Glesys Go Daddy Google Cloud Google Domains
Hetzner Hosting.de Hosttech HTTP request
http.net Huawei Cloud Hurricane Electric DNS HyperOne
IBM Cloud (SoftLayer) IIJ DNS Platform Service Infoblox Infomaniak
Internet Initiative Japan Internet.bs INWX Ionos
IPv64 iwantmyname Joker Joohoi's ACME-DNS
Liara Lima-City Linode (v4) Liquid Web
Loopia LuaDNS Mail-in-a-Box Manual
Metaname mijn.host Mittwald MyDNS.jp
MythicBeasts Name.com Namecheap Namesilo
NearlyFreeSpeech.NET Netcup Netlify Nicmanager
NIFCloud Njalla Nodion NS1
Open Telekom Cloud Oracle Cloud OVH plesk.com
Porkbun PowerDNS Rackspace RcodeZero
reg.ru RFC2136 RimuHosting Sakura Cloud
Scaleway Selectel v2 Selectel SelfHost.(de/eu)
Servercow Shellrent Simply.com Sonic
Stackpath Tencent Cloud DNS TransIP UKFast SafeDNS
Ultradns Variomedia VegaDNS Vercel
Versio.[nl/eu/uk] VinylDNS VK Cloud Vscale
Vultr Webnames Websupport WEDOS
Yandex 360 Yandex Cloud Yandex PDD Zone.ee
Zonomi

If your DNS provider is not supported, please open an issue.