Use the same Let's Encrypt credentials on all machines #519

New Issue

Open

opened 2023-10-22 13:42:22 +00:00 by raucao · 1 comment

raucao commented 2023-10-22 13:42:22 +00:00

Owner

Copy Link

I added CAA records for the various accounts currently in use, but it's too messy this way (and I'm sure I didn't add all of them). It should just be one trusted account that is allowed to issue certificates and that can be configured and updated via Chef.

I added[ CAA records](https://letsencrypt.org/docs/caa/) for the various accounts currently in use, but it's too messy this way (and I'm sure I didn't add all of them). It should just be one trusted account that is allowed to issue certificates and that can be configured and updated via Chef.

raucao added the

security

enhancement

labels 2023-10-22 13:42:22 +00:00

raucao commented 2023-12-02 12:00:24 +00:00

Author

Owner

Copy Link

Note: Since we have switched the public web proxies to OpenResty, we could now also use auto-ssl instead of Certbot for the nginx sites there.

Note: Since we have switched the public web proxies to OpenResty, we could now also use [auto-ssl](https://github.com/auto-ssl/lua-resty-auto-ssl) instead of Certbot for the nginx sites there.

raucao referenced this issue 2025-04-22 14:57:10 +00:00

Switch from certbot to lego #589

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

bugfix/499-unattended_upgrades

notes/ejabberd_ldap_photo

feature/akaunting

chore/ejabberd_service_avatar

feature/237-gitea_gpg

jammy_jellyfish

No results found.

Labels

Clear labels

service

accounts

Kosmos Accounts

service

discourse

Kosmos Community Forums

service

drone-ci

Kosmos Drone CI

service

email

mail.kosmos.org

service

garage

S3-compatible object storage

service

gitea

Kosmos Gitea

service

ipfs

Kosmos IPFS

service

mastodon

kosmos.social

service

postgres

Database cluster

service

remotestorage

Portable data storage for the Web

service

wiki

Kosmos Wiki

service

xmpp

Kosmos Chat

bug

Something is not working

design

Graphic/visual design

dev environment

Config, builds, CI, deployment, etc.

docs

Documentation

duplicate

This issue or pull request already exists

enhancement

Improving existing functionality

feature

New functionality

good first issue

Dive in, and start contributing

idea

Something to consider

invalid

Not a bug

kredits-1

Small contribution

kredits-2

Medium contribution

kredits-3

Large contribution

on hold

Currently not actionable

ops

Manual IT ops activities

question

Looking for an answer

release

major

release

minor

release

patch

security

All your base are belong to us

ui/ux

User interface, process design, etc.

wontfix

This won't be fixed

No Label

enhancement

security

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

bkero bumi fsmanuel galfert greg hueso raucao slvrbckt

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: kosmos/chef#519

No description provided.