Support local development with proper HTTPS configuration without dealing with manually trusting self-signed CA certificates.
Important/Disclaimer
⚠️ This tool doesn't installs a root CA in your system but will require server to serve using a pre-made certificate. Use it only if you know what you are doing.
Features
Support TLS for all subdomains (requires your server to serve with our certificate)
Auto-renew certificate (let's encrypt only provides 3-months certificate)
Protection against malicious certificate revocation
3rd party integration guide for production use
Metrics
Usage
CLI
Usage of ./tlsapi:
-domain string
[MUST CHANGE] Base domain for DNS resolution (default "example.com")
-h Print this help
-port int
Port for DNS server to listen to (default 8888)
-tls
Turn on TLS mode
-tls-dryrun
Set to use STAGING ACME Directory
-tls-email string
[MUST CHANGE] Email for letsencrypt registration (default "john.doe@example.com")