This repository has been integrated into the main Sōzu repository. It is available directly from the command line of Sōzu.
sozu-acme is a configuration tool for the sōzu HTTP reverse proxy that automates certificate requests from Let's Encrypt or other ACME enabled certificate authorities.
This tool is in beta right now, don't hesitate to test it and report issues.
sozu-acme --config /path/to/sozu/config.toml # configuration file for sozu
--certificate /path/to/cert.pem # path to store new certificate
--key /path/to/key.pem # path to store the key
--chain /path/to/chain.pem # path to store the certificate chain
--domain example.com # domain name for which the certificate will be generated
--email example@example.com # registration email
--id app_example # application id for sozu
--http 1.2.3.4:80 # frontend HTTP address (for the challenge)
--https 1.2.3.4:443 # frontend HTTPS address (for the challenge)
this tool will perform the following actions:
- contact Let's Encrypt
- retrieve the challenge data
- launch a web server for the HTTP challenge
- configure sōzu to redirect the challenge request to that web server
- start the HTTP challenge validation
- if the challenge was successful, write the certificate, chain and key to the specified paths
- remove the challenge web server from sōzu's configuration
Copyright (C) 2017-2018 Geoffroy Couprie
This program is free software: you can redistribute it and/or modify it under the terms of the GNU Affero General Public License as published by the Free Software Foundation, version 3.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more details.