Skip to main content

Let's Encrypt client

Project description

Disclaimer

This is a DEVELOPER PREVIEW intended for developers and testers only.

DO NOT RUN THIS CODE ON A PRODUCTION SERVER. IT WILL INSTALL CERTIFICATES SIGNED BY A TEST CA, AND WILL CAUSE CERT WARNINGS FOR USERS.

Browser-trusted certificates will be available in the coming months.

For more information regarding the status of the project, please see https://letsencrypt.org. Be sure to checkout the Frequently Asked Questions (FAQ).

About the Let’s Encrypt Client

Travis CI status Coverage status Documentation status Docker Repository on Quay.io

In short: getting and installing SSL/TLS certificates made easy (watch demo video).

The Let’s Encrypt Client is a tool to automatically receive and install X.509 certificates to enable TLS on servers. The client will interoperate with the Let’s Encrypt CA which will be issuing browser-trusted certificates for free.

It’s all automated:

  • The tool will prove domain control to the CA and submit a CSR (Certificate Signing Request).

  • If domain control has been proven, a certificate will get issued and the tool will automatically install it.

All you need to do to sign a single domain is:

user@www:~$ sudo letsencrypt -d www.example.org auth

For multiple domains (SAN) use:

user@www:~$ sudo letsencrypt -d www.example.org -d example.org auth

and if you have a compatible web server (Apache or Nginx), Let’s Encrypt can not only get a new certificate, but also deploy it and configure your server automatically!:

user@www:~$ sudo letsencrypt -d www.example.org run

Encrypt ALL the things!

Current Features

  • web servers supported:

    • apache/2.x (tested and working on Ubuntu Linux)

    • nginx/0.8.48+ (under development)

    • standalone (runs its own webserver to prove you control the domain)

  • the private key is generated locally on your system

  • can talk to the Let’s Encrypt (demo) CA or optionally to other ACME compliant services

  • can get domain-validated (DV) certificates

  • can revoke certificates

  • adjustable RSA key bitlength (2048 (default), 4096, …)

  • optionally can install a http->https redirect, so your site effectively runs https only (Apache only)

  • fully automated

  • configuration changes are logged and can be reverted using the CLI

  • text and ncurses UI

  • Free and Open Source Software, made with Python.

Installation Instructions

Official documentation, including installation instructions, is available at https://letsencrypt.readthedocs.org.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

letsencrypt-0.0.0.dev20151021.tar.gz (145.9 kB view details)

Uploaded Source

Built Distribution

letsencrypt-0.0.0.dev20151021-py2-none-any.whl (161.3 kB view details)

Uploaded Python 2

File details

Details for the file letsencrypt-0.0.0.dev20151021.tar.gz.

File metadata

File hashes

Hashes for letsencrypt-0.0.0.dev20151021.tar.gz
Algorithm Hash digest
SHA256 a6d92021e4b53d4d3067add6dbbba4ce3d9cb582089f5c60197d58a1ab4f63b8
MD5 14cc485de72856a2413639674406d7f8
BLAKE2b-256 bd6a9dce0a863f7ce468def58fae618763750e1590ec679d7935f8e28420d366

See more details on using hashes here.

File details

Details for the file letsencrypt-0.0.0.dev20151021-py2-none-any.whl.

File metadata

File hashes

Hashes for letsencrypt-0.0.0.dev20151021-py2-none-any.whl
Algorithm Hash digest
SHA256 250048b347fa274bc967fe8cf89451dd83cd9c12797330d4b04d54310d9bdf75
MD5 c692b30e57862345383c3b0b415c4e0e
BLAKE2b-256 d6e8b6690db6ae0c44bbf3c5bc526de3974ada1d00e12b18cee9e2296150f6f7

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page