Go to file

Elliot Saba 10f222b8a9 Just mess it all up		2017-01-01 21:34:59 -08:00
scripts	Just mess it all up	2017-01-01 21:34:59 -08:00
Dockerfile	Just mess it all up	2017-01-01 21:34:59 -08:00
LICENSE	Just mess it all up	2017-01-01 21:34:59 -08:00
Makefile	Just mess it all up	2017-01-01 21:34:59 -08:00
README.md	Just mess it all up	2017-01-01 21:34:59 -08:00
crontab	Customizations	2017-01-01 12:58:42 -08:00
docker-compose.yml	Just mess it all up	2017-01-01 21:34:59 -08:00

README.md

docker-letsencrypt-cron

Create and automatically renew website SSL certificates using the letsencrypt free certificate authority, and its client certbot.

ACME Validation challenge

To authenticate the certificates, the you need to pass the ACME validation challenge. This requires requests made on port 80 to your.domain.com/.well-known/ to be forwarded to this container.

The recommended way to use this image is to set up your reverse proxy to automatically forward requests for the ACME validation challenges to this container.

Nginx example

If you use nginx as a reverse proxy, you can add the following to your configuration file in order to pass the ACME challenge.

upstream certbot_upstream{
  server certbot:80;
}

server {
  listen              80;
  location '/.well-known/acme-challenge' {
    default_type "text/plain";
    proxy_pass http://certbot_upstream;
  }
}

More information

Find out more about letsencrypt: https://letsencrypt.org

Certbot github: https://github.com/certbot/certbot

Changelog

0.4

Rip out a bunch of stuff because @staticfloat is a monster, and likes to do things his way

0.3

Add support for webroot mode.
Run certbot once with all domains.

0.2

Upgraded to use certbot client
Changed image to use alpine linux

0.1

Initial release