aboutsummaryrefslogtreecommitdiff
path: root/acme.toml
diff options
context:
space:
mode:
authorDimitri Sokolyuk <demon@dim13.org>2015-12-14 19:24:50 +0100
committerDimitri Sokolyuk <demon@dim13.org>2015-12-14 19:24:50 +0100
commit36f3a6f8a8f17437daba42aab176fab255773502 (patch)
tree84e2e05e82baa0b9cf8ab269d0d930c5966b9de6 /acme.toml
parentdb9e921e40b105369785c2fbde096c676375d3ba (diff)
Update config
Diffstat (limited to 'acme.toml')
-rw-r--r--acme.toml31
1 files changed, 19 insertions, 12 deletions
diff --git a/acme.toml b/acme.toml
index 33dfe79..beff259 100644
--- a/acme.toml
+++ b/acme.toml
@@ -1,24 +1,25 @@
[defaults]
gracetime = "1 week"
listen = "localhost:8443"
+basedir = ".acme" # usually "/etc/ssl"
+provider = "les"
+account = "webmaster"
[provider.lev1]
directory = "https://acme-v01.api.letsencrypt.org/directory"
[provider.les]
directory = "https://acme-staging.api.letsencrypt.org/directory"
-default = true
[account.webmaster]
mail = "webmaster@example.com"
phone = "+12025551212"
-key = "/etc/acme.key"
-default = true
+key = "webmaster.key"
[account.postmaster]
mail = "postmaster@example.com"
phone = "+12025551212"
-key = "/etc/acme.key"
+key = "postmaster.key"
[hook.nginx]
cmd = "sudo service nginx reload"
@@ -29,20 +30,26 @@ cmd = "sudo service dovecot reload"
[hook.smtpd]
cmd = "sudo service smtpd reload"
-[desire.web]
+# long example
+[desire.com]
provider = "les"
-account = "another"
+account = "webmaster"
altnames = [ "www.example.com", "example.com" ]
-key = "/etc/ssl/private/www_example_com.key"
-cert = "/etc/ssl/certs/www_example_com.pem"
+key = "private/www_example_com.key"
+cert = "certs/www_example_com.pem"
webroot = "/var/www/htdocs"
hooks = [ "nginx" ]
+# short example, uses defaults
+[desire.net]
+altnames = [ "www.example.net" ] # www implies altname without www
+key = "private/www_example_net.key"
+cert = "certs/www_example_net.pem"
+hooks = [ "nginx" ]
+
[desire.mail]
-provider = "les"
account = "postmaster"
altnames = [ "mail.example.com" ]
-key = "/etc/ssl/private/mail_example_com.key"
-cert = "/etc/ssl/certs/mail_example_com.pem"
-gracetime = "1 week"
+key = "private/mail_example_com.key"
+cert = "certs/mail_example_com.pem"
hooks = [ "dovecot", "smtpd" ]