Page MenuHomeDevCentral

Install Let's encrypt client as a Docker container
ClosedPublic

Authored by dereckson on Mar 15 2018, 20:02.
Tags
None
Referenced Files
F7337288: D1422.id.diff
Thu, Apr 24, 23:07
Unknown Object (File)
Thu, Apr 24, 14:55
Unknown Object (File)
Wed, Apr 23, 14:13
Unknown Object (File)
Wed, Apr 23, 08:03
Unknown Object (File)
Tue, Apr 22, 17:19
Unknown Object (File)
Mon, Apr 21, 09:58
Unknown Object (File)
Sat, Apr 19, 02:35
Unknown Object (File)
Sat, Apr 19, 00:15
Subscribers
None

Details

Summary

The Let's encrypt client certbot is installed according two methods:

  • on regular servers, as a distro/OS package
  • on Docker engines, as a container and a wrapper script

This change takes care of the second method.

The certbot/certbot image is used (previously, the letsencrypt
image on quay.org was used), as officially maintained by EFF.

A certbot wrapper command runs the container with the correct
volumes mounted to be able to generate or renew certificates.

Test Plan
  • salt equatower state.apply roles/paas-docker/docker/images
  • salt equatower state.apply roles/paas-docker/wrappers
  • certbot <some commands>

Diff Detail

Repository
rOPS Nasqueron Operations
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

dereckson created this revision.
Equatower
$ certbot
usage:
  certbot [SUBCOMMAND] [options] [-d DOMAIN] [-d DOMAIN] ...

Certbot can obtain and install HTTPS/TLS/SSL certificates.  By default,
it will attempt to use a webserver both for obtaining and installing the
certificate.
certbot: error: unrecognized arguments:
This revision is now accepted and ready to land.Mar 15 2018, 20:15
This revision was automatically updated to reflect the committed changes.