GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → runfalk → certbot-dns-loopia

runfalk / certbot-dns-loopia

Licence: other
Loopia DNS authentication plugin for Certbot

Programming Languages

python
139335 projects - #7 most used programming language
shell
77523 projects
Makefile
30231 projects

Labels

letsencryptsslunmaintainedmaintainer-wantedloopialetsencrypt-plugin

Projects that are alternatives of or similar to certbot-dns-loopia

Lua Resty Auto Ssl
On the fly (and free) SSL registration and renewal inside OpenResty/nginx with Let's Encrypt.
Stars: ✭ 1,786 (+6278.57%)
Mutual labels:  letsencrypt, ssl
Udm Le
Let's Encrypt support for Ubiquiti UbiOS firmwares
Stars: ✭ 170 (+507.14%)
Mutual labels:  letsencrypt, ssl
Acmetool
🔒 acmetool, an automatic certificate acquisition tool for ACME (Let's Encrypt)
Stars: ✭ 1,882 (+6621.43%)
Mutual labels:  letsencrypt, ssl
Acme client
Java ACME Client application
Stars: ✭ 77 (+175%)
Mutual labels:  letsencrypt, ssl
Terraform Provider Acme Old
ACME (Let's Encrypt) Support for Terraform
Stars: ✭ 211 (+653.57%)
Mutual labels:  letsencrypt, ssl
Certificaat
General-purpose ACME client
Stars: ✭ 88 (+214.29%)
Mutual labels:  letsencrypt, ssl
Certbot Route53
Helping create Let's Encrypt certificates for AWS Route53
Stars: ✭ 159 (+467.86%)
Mutual labels:  letsencrypt, ssl
Greenlock
Automatic SSL renewal for NodeJS
Stars: ✭ 30 (+7.14%)
Mutual labels:  letsencrypt, ssl
AzureWebAppSSLManager
Acquires and manages free SSL certificates for Azure Web App and Azure Functions applications.
Stars: ✭ 70 (+150%)
Mutual labels:  letsencrypt, ssl
Manuale
A fully manual Let's Encrypt/ACME client
Stars: ✭ 201 (+617.86%)
Mutual labels:  letsencrypt, ssl
Docker Letsencrypt Certgen
Docker image to generate, renew, revoke RSA and/or ECDSA SSL certificates from LetsEncrypt CA using certbot and acme.sh clients in automated fashion
Stars: ✭ 64 (+128.57%)
Mutual labels:  letsencrypt, ssl
qiniu-auto-cert
七牛 CDN 证书自动化工具
Stars: ✭ 20 (-28.57%)
Mutual labels:  letsencrypt, ssl
Letsencrypt heroku
Automated letsencrypt setup for heroku
Stars: ✭ 58 (+107.14%)
Mutual labels:  letsencrypt, ssl
Serverpilot Letsencrypt
Automate the installation of Let's Encrypt SSL on the free plan of ServerPilot
Stars: ✭ 129 (+360.71%)
Mutual labels:  letsencrypt, ssl
Certify
SSL Certificate Manager UI for Windows, powered by Let's Encrypt. Download from certifytheweb.com
Stars: ✭ 1,075 (+3739.29%)
Mutual labels:  letsencrypt, ssl
Nginxconfig.io
⚙️ NGINX config generator on steroids 💉
Stars: ✭ 14,983 (+53410.71%)
Mutual labels:  letsencrypt, ssl
Docker Letsencrypt Nginx Proxy Companion
Automated ACME SSL certificate generation for nginx-proxy
Stars: ✭ 6,350 (+22578.57%)
Mutual labels:  letsencrypt, ssl
Docker Mailserver
Production-ready fullstack but simple mail server (SMTP, IMAP, LDAP, Antispam, Antivirus, etc.) running inside a container.
Stars: ✭ 8,115 (+28882.14%)
Mutual labels:  letsencrypt, ssl
Guacamole Install Rhel 7
Apache Guacamole installation bash script for RHEL 7 and CentOS 7 including options for Nginx, HTTPS, SSL, LDAP, Let's Encrypt certificates and more
Stars: ✭ 174 (+521.43%)
Mutual labels:  letsencrypt, ssl
Acme Nginx
python acme client for nginx
Stars: ✭ 248 (+785.71%)
Mutual labels:  letsencrypt, ssl
View All Similar Projects ➔

Test

Loopia DNS Authenticator for Certbot

This allows automatic completion of Certbot's DNS01 challenge for domains managed on Loopia DNS.

Installing

$ sudo pip install certbot-dns-loopia

Note that you should normally install this as root, unless you know what you are doing.

Preconditions

Loopia API user

The plugin requires the following permissions enabled for your Loopia API user:

  • addZoneRecord
  • getZoneRecords
  • removeSubdomain
  • removeZoneRecord

Credentials file

An INI file with user and password for your Loopia API user needs to be created. user normally has the format user@loopiaapi.

The credentials file must have the following format:

dns_loopia_user = user@loopiaapi
dns_loopia_password = passwordgoeshere

For safety reasons the file must not be world readable. You can solve this by running:

$ chmod 600 credentials.ini

Usage

Parameters

When using certbot with certbot-dns-loopia, aside from the usual parameters accepted by certbot, the following parameters may be used:

Parameter Required? Default Description
--dns-loopia-credentials <path> ✔️ - The path of the INI file containing your Loopia API user credentials
--dns-loopia-propagation-seconds <seconds> 900 Determines how many seconds to wait before contacting the ACME server after adding the zone record to Loopia DNS

Examples

To obtain a certificate for domain.com, run certbot using:

$ sudo certbot certonly \
    --authenticator dns-loopia \
    --dns-loopia-credentials credentials.ini \
    -d domain.com

To obtain a wildcard certificate for all subdomains of domain.com:

$ sudo certbot certonly \
    --authenticator dns-loopia \
    --dns-loopia-credentials credentials.ini \
    -d *.domain.com

To obtain a certificate valid for multiple domains using SAN, in this example for foo.com and bar.com:

$ sudo certbot certonly \
    --authenticator dns-loopia \
    --dns-loopia-credentials credentials.ini \
    -d foo.com \
    -d bar.com

Known issues

  • Due to caching on Loopia's side it can take up to 15 minutes before changes propagate. Therefore, the plugin will wait 15 minutes before contacting the ACME server.

    It has been known to work with as little as 90 seconds and sometimes less. If you want to try something other than 15 minutes, use --dns-loopia-propagation-seconds 90 for 90 seconds or however many seconds you want.

Contributing

How to set up a dev environment, test and publish new versions of the project is described on the DEVELOP page.

Disclaimer

This plugin is neither affiliated with nor endorsed by Loopia AB.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].