rancher-letsencrypt

command module

v0.2.8 Latest Latest Go to latest Published: Apr 18, 2016 License: MIT Imports: 7 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/dsmontoya/rancher-letsencrypt

Links

Open Source Insights

README ¶

Let's Encrypt Certificate Manager for Rancher

A Rancher service that obtains free SSL/TLS certificates from the Let's Encrypt CA, adds them to Rancher's certificate store and manages renewal and propagation of updated certificates to load balancers.

Requirements

Rancher Server >= v0.63.0
Existing account with one of the supported DNS providers:
- CloudFlare
- DigitalOcean
- AWS Route 53
- DNSimple
- Dyn

How to use

This application is distributed via the Rancher Community Catalog.

Enable the Community Catalog under Admin => Settings in the Rancher UI. Then find the Let's Encrypt template in the Catalog section of the UI and follow the instructions.

Provider specific usage

AWS Route 53

The following IAM policy describes the minimum permissions required to run rancher-letsencrypt using AWS Route 53 for domain authorization.
Replace <HOSTED_ZONE_ID> with the ID of the hosted zone that encloses the domain(s) for which you are going to obtain certificates. You may use a wildcard (*) in place of the ID to make this policy work with all of the hosted zones associated with an AWS account.

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "route53:GetChange",
                "route53:ListHostedZonesByName"
            ],
            "Resource": [
                "*"
            ]
        },
        {
            "Effect": "Allow",
            "Action": [
                "route53:ChangeResourceRecordSets"
            ],
            "Resource": [
                "arn:aws:route53:::hostedzone/<HOSTED_ZONE_ID>"
            ]
        }
    ]
}

Building the image

make build && make image

Contributions

PR's welcome!

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

Directories ¶

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL

Path	Synopsis
Godeps
_workspace/src/github.com/Sirupsen/logrus Package logrus is a structured logger for Go, completely API compatible with the standard library logger.	Package logrus is a structured logger for Go, completely API compatible with the standard library logger.
_workspace/src/github.com/aws/aws-sdk-go/aws Package aws provides core functionality for making requests to AWS services.	Package aws provides core functionality for making requests to AWS services.
_workspace/src/github.com/aws/aws-sdk-go/aws/awserr Package awserr represents API error interface accessors for the SDK.	Package awserr represents API error interface accessors for the SDK.
_workspace/src/github.com/aws/aws-sdk-go/aws/awsutil
_workspace/src/github.com/aws/aws-sdk-go/aws/client
_workspace/src/github.com/aws/aws-sdk-go/aws/client/metadata
_workspace/src/github.com/aws/aws-sdk-go/aws/corehandlers
_workspace/src/github.com/aws/aws-sdk-go/aws/credentials Package credentials provides credential retrieval and management The Credentials is the primary method of getting access to and managing credentials Values.	Package credentials provides credential retrieval and management The Credentials is the primary method of getting access to and managing credentials Values.
_workspace/src/github.com/aws/aws-sdk-go/aws/credentials/ec2rolecreds
_workspace/src/github.com/aws/aws-sdk-go/aws/defaults Package defaults is a collection of helpers to retrieve the SDK's default configuration and handlers.	Package defaults is a collection of helpers to retrieve the SDK's default configuration and handlers.
_workspace/src/github.com/aws/aws-sdk-go/aws/ec2metadata Package ec2metadata provides the client for making API calls to the EC2 Metadata service.	Package ec2metadata provides the client for making API calls to the EC2 Metadata service.
_workspace/src/github.com/aws/aws-sdk-go/aws/request
_workspace/src/github.com/aws/aws-sdk-go/aws/session Package session provides a way to create service clients with shared configuration and handlers.	Package session provides a way to create service clients with shared configuration and handlers.
_workspace/src/github.com/aws/aws-sdk-go/private/endpoints Package endpoints validates regional endpoints for services.	Package endpoints validates regional endpoints for services.
_workspace/src/github.com/aws/aws-sdk-go/private/protocol
_workspace/src/github.com/aws/aws-sdk-go/private/protocol/query Package query provides serialisation of AWS query requests, and responses.	Package query provides serialisation of AWS query requests, and responses.
_workspace/src/github.com/aws/aws-sdk-go/private/protocol/query/queryutil
_workspace/src/github.com/aws/aws-sdk-go/private/protocol/rest Package rest provides RESTful serialization of AWS requests and responses.	Package rest provides RESTful serialization of AWS requests and responses.
_workspace/src/github.com/aws/aws-sdk-go/private/protocol/restxml Package restxml provides RESTful XML serialisation of AWS requests and responses.	Package restxml provides RESTful XML serialisation of AWS requests and responses.
_workspace/src/github.com/aws/aws-sdk-go/private/protocol/xml/xmlutil Package xmlutil provides XML serialisation of AWS requests and responses.	Package xmlutil provides XML serialisation of AWS requests and responses.
_workspace/src/github.com/aws/aws-sdk-go/private/signer/v4 Package v4 implements signing for AWS V4 signer	Package v4 implements signing for AWS V4 signer
_workspace/src/github.com/aws/aws-sdk-go/private/waiter
_workspace/src/github.com/aws/aws-sdk-go/service/route53 Package route53 provides a client for Amazon Route 53.	Package route53 provides a client for Amazon Route 53.
_workspace/src/github.com/go-ini/ini Package ini provides INI file read and write functionality in Go.	Package ini provides INI file read and write functionality in Go.
_workspace/src/github.com/gorilla/websocket Package websocket implements the WebSocket protocol defined in RFC 6455.	Package websocket implements the WebSocket protocol defined in RFC 6455.
_workspace/src/github.com/jmespath/go-jmespath
_workspace/src/github.com/miekg/dns Package dns implements a full featured interface to the Domain Name System.	Package dns implements a full featured interface to the Domain Name System.
_workspace/src/github.com/rancher/go-rancher/client
_workspace/src/github.com/weppos/dnsimple-go/dnsimple Package dnsimple implements a client for the DNSimple API.	Package dnsimple implements a client for the DNSimple API.
_workspace/src/github.com/xenolf/lego/acme Package acme implements the ACME protocol for Let's Encrypt and other conforming providers.	Package acme implements the ACME protocol for Let's Encrypt and other conforming providers.
_workspace/src/github.com/xenolf/lego/providers/dns/cloudflare Package cloudflare implements a DNS provider for solving the DNS-01 challenge using cloudflare DNS.	Package cloudflare implements a DNS provider for solving the DNS-01 challenge using cloudflare DNS.
_workspace/src/github.com/xenolf/lego/providers/dns/digitalocean Package digitalocean implements a DNS provider for solving the DNS-01 challenge using digitalocean DNS.	Package digitalocean implements a DNS provider for solving the DNS-01 challenge using digitalocean DNS.
_workspace/src/github.com/xenolf/lego/providers/dns/dnsimple Package dnsimple implements a DNS provider for solving the DNS-01 challenge using dnsimple DNS.	Package dnsimple implements a DNS provider for solving the DNS-01 challenge using dnsimple DNS.
_workspace/src/github.com/xenolf/lego/providers/dns/dyn Package dyn implements a DNS provider for solving the DNS-01 challenge using Dyn Managed DNS.	Package dyn implements a DNS provider for solving the DNS-01 challenge using Dyn Managed DNS.
_workspace/src/github.com/xenolf/lego/providers/dns/route53 Package route53 implements a DNS provider for solving the DNS-01 challenge using AWS Route 53 DNS.	Package route53 implements a DNS provider for solving the DNS-01 challenge using AWS Route 53 DNS.
_workspace/src/golang.org/x/crypto/ocsp Package ocsp parses OCSP responses as specified in RFC 2560.	Package ocsp parses OCSP responses as specified in RFC 2560.
_workspace/src/golang.org/x/net/publicsuffix Package publicsuffix provides a public suffix list based on data from http://publicsuffix.org/.	Package publicsuffix provides a public suffix list based on data from http://publicsuffix.org/.
_workspace/src/golang.org/x/sys/unix Package unix contains an interface to the low-level operating system primitives.	Package unix contains an interface to the low-level operating system primitives.
_workspace/src/gopkg.in/square/go-jose.v1 Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards.	Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards.
_workspace/src/gopkg.in/square/go-jose.v1/cipher
_workspace/src/gopkg.in/square/go-jose.v1/json Package json implements encoding and decoding of JSON objects as defined in RFC 4627.	Package json implements encoding and decoding of JSON objects as defined in RFC 4627.
letsencrypt
rancher