Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details

All Projects → obynio → Certbot Plugin Gandi

obynio / Certbot Plugin Gandi

Licence: mit

Certbot plugin for authentication using Gandi LiveDNS

Programming Languages

139335 projects - #7 most used programming language

Labels

letsencrypt certbot

Projects that are alternatives of or similar to Certbot Plugin Gandi

A docker-powered bash script for shared web hosting management. The ultimate Docker LAMP/LEMP Stack.

Stars: ✭ 89 (-9.18%)

Mutual labels: letsencrypt, certbot

Ansible Role Certbot

Ansible Role - Certbot (for Let's Encrypt)

Stars: ✭ 477 (+386.73%)

Mutual labels: letsencrypt, certbot

letsencrypt-to-vault

Renew or get Let's Encrypt certificates and send it to Hashicorp Vault

Stars: ✭ 84 (-14.29%)

Mutual labels: letsencrypt, certbot

Let's Certbot is a tool builds automated scripts base on Certbot for obtaining, renewing, deploying SSL certificates.

Stars: ✭ 84 (-14.29%)

Mutual labels: letsencrypt, certbot

Docker Nginx Letsencrypt Upstream

infrastructure: docker-compose config for node and redis behind upstream nginx ( SSL/HTTPS ) on debian jessie

Stars: ✭ 47 (-52.04%)

Mutual labels: letsencrypt, certbot

letsencrypt-inwx

A small cli utility for automating the letsencrypt dns-01 challenge for domains hosted by inwx.

Stars: ✭ 43 (-56.12%)

Mutual labels: letsencrypt, certbot

Orchestrate Certbot and Lexicon together to provide Let's Encrypt TLS certificates validated by DNS challenges

Stars: ✭ 420 (+328.57%)

Mutual labels: letsencrypt, certbot

certbot-dns-ovh

Certbot plugin to respond to DNS-01 challenges by updating the zone.

Stars: ✭ 20 (-79.59%)

Mutual labels: letsencrypt, certbot

Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.

Stars: ✭ 28,541 (+29023.47%)

Mutual labels: letsencrypt, certbot

Certbot Letencrypt Wildcardcertificates Alydns Au

certbot'renewing letencrypt certificate plugin - automatic verification aliyun/tencentyun/godaddy dns

Stars: ✭ 839 (+756.12%)

Mutual labels: letsencrypt, certbot

Docker Letsencrypt Certgen

Docker image to generate, renew, revoke RSA and/or ECDSA SSL certificates from LetsEncrypt CA using certbot and acme.sh clients in automated fashion

Stars: ✭ 64 (-34.69%)

Mutual labels: letsencrypt, certbot

Ansible Letsencrypt

Ansible role for LetsEncrypt

Stars: ✭ 66 (-32.65%)

Mutual labels: letsencrypt, certbot

docker-apache-letsencrypt

This docker-image contains a simple Apache webserver and supports https-encryption by great Let's Encrypt certificates!

Stars: ✭ 65 (-33.67%)

Mutual labels: letsencrypt, certbot

django-yadpt-starter

Yet Another Django Project Template skeleton for Django projects

Stars: ✭ 28 (-71.43%)

Mutual labels: letsencrypt, certbot

docker-nginx-certbot

Automatically create and renew website certificates for free using the Let's Encrypt certificate authority.

Stars: ✭ 367 (+274.49%)

Mutual labels: letsencrypt, certbot

docker-haproxy-certbot

Dockerized HAProxy with Let's Encrypt certificates automatic renewal

Stars: ✭ 28 (-71.43%)

Mutual labels: letsencrypt, certbot

WAT - Windows ACME Tool

Stars: ✭ 28 (-71.43%)

Mutual labels: letsencrypt, certbot

Go client library implementation for ACME v2 (RFC8555)

Stars: ✭ 77 (-21.43%)

Mutual labels: letsencrypt, certbot

A pure Unix shell script implementing ACME client protocol

Stars: ✭ 24,723 (+25127.55%)

Mutual labels: letsencrypt, certbot

Certbot Install

Install the latest Certbot in a breeze. Great for Ubuntu Focal 20.04, and other Linux/Mac.

Stars: ✭ 50 (-48.98%)

Mutual labels: letsencrypt, certbot

View All Similar Projects ➔

Certbot plugin for authentication using Gandi LiveDNS

This is a plugin for Certbot that uses the Gandi LiveDNS API to allow Gandi customers to prove control of a domain name.

Usage

/!\ Certbot 1.7.0 imposed breaking changes on this plugin, make sure to remove any prefix-based configuration

Obtain a Gandi API token (see Gandi LiveDNS API)
Install the plugin using pip install certbot-plugin-gandi
Create a gandi.ini config file with the following contents and apply chmod 600 gandi.ini on it:
```
# live dns v5 api key
dns_gandi_api_key=APIKEY

# optional organization id, remove it if not used
dns_gandi_sharing_id=SHARINGID
```
Replace APIKEY with your Gandi API key and ensure permissions are set to disallow access to other users.
Run certbot and direct it to use the plugin for authentication and to use the config file previously created:
```
certbot certonly --authenticator dns-gandi --dns-gandi-credentials /etc/letsencrypt/gandi/gandi.ini -d domain.com
```
Add additional options as required to specify an installation plugin etc.

Please note that this solution is usually not relevant if you're using Gandi's web hosting services as Gandi offers free automated certificates for all simplehosting plans having SSL in the admin interface.

Be aware that the plugin configuration must be provided by CLI, configuration for third-party plugins in cli.ini is not supported by certbot for the moment. Please refer to #4351, #6504 and #7681 for details.

Distribution

PyPI is the upstream distribution channel, other channels are not maintained by me.

Every release pushed to PyPI is signed with GPG.

Wildcard certificates

This plugin is particularly useful when you need to obtain a wildcard certificate using dns challenges:

certbot certonly --authenticator dns-gandi --dns-gandi-credentials /etc/letsencrypt/gandi/gandi.ini -d domain.com -d \*.domain.com --server https://acme-v02.api.letsencrypt.org/directory

Automatic renewal

You can setup automatic renewal using crontab with the following job for weekly renewal attempts:

0 0 * * 0 certbot renew -q --authenticator dns-gandi --dns-gandi-credentials /etc/letsencrypt/gandi/gandi.ini --server https://acme-v02.api.letsencrypt.org/directory

Reading material

A blog post by @realEmaRocca describing how to use this plugin on Debian

FAQ

I have a warning telling me Plugin legacy name certbot-plugin-gandi:dns may be removed in a future version. Please use dns instead.

Certbot had moved to remove 3rd party plugins prefixes since v1.7.0. Please switch to the new configuration format and remove any used prefix-based configuration. For the time being, you can still use prefixes, but if you do so and keep using prefix-based cli arguments, stay consistent and use prefix-based configuration in the ini file.

New post-prefix configuration for certbot>=1.7.0

--authenticator dns-gandi --dns-gandi-credentials
gandi.ini

# live dns v5 api key
dns_gandi_api_key=APIKEY

# optional organization id, remove it if not used
# if you use certbot<1.7.0 please use certbot_plugin_gandi:dns_sharing_id=SHARINGID
dns_gandi_sharing_id=SHARINGID

Legacy prefix-based configuration for certbot<1.7.0

-a certbot-plugin-gandi:dns --certbot-plugin-gandi:dns-credentials
gandi.ini

 # live dns v5 api key
certbot_plugin_gandi:dns_api_key=APIKEY

# optional organization id, remove it if not used
certbot_plugin_gandi:dns_sharing_id=SHARINGID

See certbot/8131 and certbot-plugin-gandi/23 for details. Please make sure to update the configuration file to the new format.

I get a Property "certbot_plugin_gandi:dns_api_key" not found (should be API key for Gandi account).. Skipping.

See above.

Why do you keep this plugin a third-party plugin ? Just merge it with certbot ?

This Gandi plugin is a third party plugin mainly because this plugin is not officially backed by Gandi and because Certbot does not accept new plugin submissions.

Credits

Huge thanks to Michael Porter for its original work !

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Stars: ✭ 98

Visit Git Page 🔗Visit User Page 🔗Visit Issues Page (3) 🔗