Skip to main content

Command line utility to generate a csr for letsencrypt from a preexisting key

Project description

# Letsencrypt GenCSR #

A very fin wrapper around letsencrypt which allows the construction of a CSR which is compatible with the letsencrypt toolchain.

Use this, if you don’t want to generate new private keys every time when requesting letsencrypt certificates. Even though this is generally a good security practice it might be problematic when using public key pinning.

## Installation ##

` pip install letsencrypt_gencsr `

## Usage ##

` letsencrypt-gencsr-helper gencsr --key privkey.pem -d my.awesome.domain.net awesome.domain.net domain.net -o request.csr `

This generates form the given key “privkey.pem” and the domains “my.awesome.domain.net”, “awesome.domain.net” and “domain.net” a CSR file (in request.csr) compatible with letsencrypt which can be passed to the toolchain through the –csr flag:

` letsencrypt certonly --csr request.csr --webroot --renew-by-default --agree-tos -w /var/www `

## Letsencrypt proxy ##

As of Version 0.2.0 the letsencrypt-gencsr-helper acts as a proxy of the letsencrypt cli interface and has the same commands.

This is done to support the additional –private-key parameter. It allows to feed a pre defined private key to the certonly certificate request:

` letsencrypt-gencsr-helper certonly --private-key privatekey.pem --webroot -w /var/www -d example.com `

Of course the same functionality also works with the run command.

## License ##

The application is licensed under the [MIT license](http://opensource.org/licenses/MIT). The used letsencrypt library is licensed under the [Apache 2.0 license](http://opensource.org/licenses/apache-2.0).

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

letsencrypt_gencsr-0.2.0.tar.gz (11.4 kB view details)

Uploaded Source

File details

Details for the file letsencrypt_gencsr-0.2.0.tar.gz.

File metadata

File hashes

Hashes for letsencrypt_gencsr-0.2.0.tar.gz
Algorithm Hash digest
SHA256 dcd603dafcf73ec78d55a2e837770f28f671da5abd6badd7be7e8edadd605622
MD5 e93a74024d24d0b92d4ce42d58df961f
BLAKE2b-256 522075b96c98fc92d287c5bc3a8560e52a658d5cb1be04f75295eca2e70b2739

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page