letsencrypt/acme client implemented as a shell-script
https://github.com/lukas2511/dehydrated
A client for signing certificates with an ACME-server (currently only provided by letsencrypt) implemented as a relatively simple bash-script.
It uses the openssl utility for everything related to actually handling keys and certificates, so you need to have that installed.
Other dependencies are: curl, sed, grep, mktemp (all found on almost any system, curl being the only exception)
Current features:
* Signing of a list of domains
* Signing of a CSR
* Renewal if a certificate is about to expire or SAN (subdomains) changed
* Certificate revocation
- Developed at security:dehydrated
- Sources inherited from project openSUSE:Factory
-
3
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Backports:SLE-15-SP4:SLECandidates/dehydrated && cd $_
- Create Badge
Refresh
Refresh
Source Files
Filename | Size | Changed |
---|---|---|
README.Fedora | 0000000163 163 Bytes | |
README.SUSE | 0000006036 5.89 KB | |
README.hooks | 0000000223 223 Bytes | |
acme-challenge.conf.apache.in | 0000000176 176 Bytes | |
acme-challenge.conf.lighttpd.in | 0000000098 98 Bytes | |
acme-challenge.conf.nginx.in | 0000000528 528 Bytes | |
dehydrated-0.6.0.tar.gz | 0000076650 74.9 KB | |
dehydrated-0.6.0.tar.gz.asc | 0000000488 488 Bytes | |
dehydrated.changes | 0000011157 10.9 KB | |
dehydrated.cron.in | 0000000249 249 Bytes | |
dehydrated.keyring | 0000002353 2.3 KB | |
dehydrated.service.in | 0000000420 420 Bytes | |
dehydrated.spec | 0000010039 9.8 KB | |
dehydrated.timer | 0000000168 168 Bytes | |
dehydrated.tmpfiles.d | 0000000135 135 Bytes |
Revision 7 (latest revision is 27)
Dominique Leuenberger (dimstar_suse)
accepted
request 585801
from
Daniel Molkentin (dmolkentin)
(revision 7)
- Updated dehydrated to 0.6.0 (osc#1084854) Changed * Challenge validation loop has been modified to loop over authorization identifiers instead of altnames (ACMEv2 + wildcard support) * Removed LICENSE parameter from config (terms of service is now acquired directly from the CA directory) Added * Support for ACME v02 (including wildcard certificates!) * New hook: generate_csr (see example hook script for more information) * Calling random hook on startup to make it clear to hook script authors that unknown hooks should just be ignored... (forwarded request 585800 from dmolkentin)
Comments 0