Amazon Lightsail DNS Authenticator Plugin for Certbot
Project description
Amazon Lightsail DNS Authenticator Plugin for Certbot
This plugin proves you have control over a domain by DNS-01 challenge to the Amazon Lightsail DNS.
Additional Arguments for Certbot
--authenticator dns-lightsail
- Use this plugin as an authenticator. (required)
--dns-lightsail-propagation-seconds ${value}
- The number of seconds to wait for DNS to propagate before asking the ACME server to verify the DNS record. (default: 60, The default TTL for Amazon Lightsail DNS records is 60 seconds so I recommend to set a value greater than it)
Getting Started
Installation
Install this plugin using pip
:
pip install certbot-dns-lightsail
Usage
This plugin requires AWS region and credential settings before it can be used. And the region must be us-east-1
.
1. Create Access Key
Create an access key using IAM policy below:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"lightsail:CreateDomainEntry",
"lightsail:DeleteDomainEntry"
],
"Resource": "arn:aws:lightsail:us-east-1:${YOUR-ACCOUNT-ID}:Domain/${YOUR-DOMAIN-ID}"
}
]
}
2. Create Setting Files
Create setting files below:
# ~/.aws/config
[default]
region=us-east-1
# ~/.aws/credentials
[default]
aws_access_key_id=${YOUR-ACCESS-KEY-ID}
aws_secret_access_key=${YOUR-SECRET-ACCESS-KEY}
3. Run Certbot
You are ready to run this plugin with Certbot!
For example, run command below to obtain a certificate using this plugin:
certbot certonly \
--authenticator dns-lightsail \
--dns-lightsail-propagation-seconds 70 \
--non-interactive \
--agree-tos \
-m 'mail@example.com' \
-d 'example.com' \
-d '*.example.com'
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for certbot-dns-lightsail-0.1.0.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | 7795a044cd8c0313af3abdaef955ba488b48e360d78819f16332554080976e6c |
|
MD5 | 438c7ce6cdef2bc186cd3c03fb22c9b5 |
|
BLAKE2b-256 | 41d5092cf88cad1d8d7428189314bbde2408a18745d9444b46e970d17c357bf2 |
Close
Hashes for certbot_dns_lightsail-0.1.0-py2.py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 780f5b5883ee77eb1a654edef00879d9f3064cc71ae964d2d7b3eb736e3b5aa4 |
|
MD5 | ab767ed71e6f3d7fb6d78f4679bd341f |
|
BLAKE2b-256 | 92d20e6b1a50604ddcf3f7983c98a7cc2b7ac491f6a158d7dc75209eff272795 |