A letsencrypt certbot auth/cleanup hook program engineered to handle hostname ownership authentication via DigitalOcean's DNS system.
Project description
This program’s purpose is to function as a manual authentication and cleanup hook for the Let’s Encrypt EFF's certbot client program when you wish to use ACME-DNS authentication during the certificate authentication process, while also using DigitalOcean's DNS infrastructure for the creation and removal of the ACME-DNS required DNS TXT records. This program also supports being passed a command string that will be called during the cleanup hook stage of the authentication process.
Installation
Installation of this program is quite easy, as it only has one external dependency, and this program includes this dependency in its setup.py file.
That said, there are 4 ways that you can install this program;
The first is via the normal means, that is, PyPI via PIP as so:
pip install lets-do-dnsYou can also install this program from a clone of the source repository, as so (remember, if you want to modify the source code without re-installing, pass the -e flag to PIP):
pip install .You can also use Docker to install/run this program. You can do this like so when grabbing from the Docker Hub:
docker pull jitsusama/lets-do-dnsFinally, you can build the image from a clone of the source repository like so:
docker build -t jitsusama/lets-do-dns .
Usage
Make sure you pass the DO_APIKEY and DO_DOMAIN environment variables to certbot when it is called. Tell certbot to load this program by passing its name to certbot via the --manual-auth-hook and the --manual-cleanup-hook CLI arguments.
If you would also like for this program to call your own program during the cleanup hook stage, make sure you pass the LETS_DO_POSTCMD environment variable to certbot as well, specifying the invocation string of your program.
Here’s an example of how you can use this program from the CLI when you installed the program via PIP:
DO_APIKEY=super-secret-key \
DO_DOMAIN=mydomain.com \
LETS_DO_POSTCMD='echo ${CERTBOT_DOMAIN} > command_output.txt' \
certbot certonly --manual -d myhostname.mydomain.com \
--preferred-challenges dns \
--manual-auth-hook lets-do-dns \
--manual-cleanup-hook lets-do-dnsHere’s an example of how you can use this program from Docker when you pulled the image from the Docker Hub:
docker run -v "$(pwd)/my-cert-dir:/etc/letsencrypt" \
-e "DO_APIKEY=super-secret-key" \
-e "DO_DOMAIN=mydomain.com" \
-e 'LETS_DO_POSTCMD="echo ${CERTBOT_DOMAIN} > /etc/letsencrypt/command_output.txt"' \
jitsusama/lets-do-dns \
certonly --manual -d myhostname.mydomain.com \
--preferred-challenges dns \
--manual-auth-hook lets-do-dns \
--manual-cleanup-hook lets-do-dns
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file lets-do-dns-0.10.3.tar.gz.
File metadata
- Download URL: lets-do-dns-0.10.3.tar.gz
- Upload date:
- Size: 7.5 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 532e9f9f81f85ce688047957b7c322929215b32fba3055b1e17ab6a3221acb12 |
|
| MD5 | d50bd6b2e85fc7ee6f2278ac9eeb98d2 |
|
| BLAKE2b-256 | 16d6186f5fa105372bf32d1fe132046f21e658640f6c6b0d69c649557a22150c |
File details
Details for the file lets_do_dns-0.10.3-py2.py3-none-any.whl.
File metadata
- Download URL: lets_do_dns-0.10.3-py2.py3-none-any.whl
- Upload date:
- Size: 13.4 kB
- Tags: Python 2, Python 3
- Uploaded using Trusted Publishing? No
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 3428cad4b8540a5d4281c6c583200b8228be75254583bfbe4f1f2fd3f3ae5821 |
|
| MD5 | 443951617057090c93f03164b92b6817 |
|
| BLAKE2b-256 | 4e6c0252b672fb14a6c13ad19ce7c64d7520a62fbede21ff666f386c26ed7b99 |
