From d5df7e8703b413de3ca441b7d46bd96aa93f4ffe Mon Sep 17 00:00:00 2001 From: Dimitri Sokolyuk Date: Thu, 11 Feb 2016 20:23:11 +0100 Subject: Add alternative config format. --- cmd/acme/dim13.hcl | 53 +++++++++++++++++++++++++++++++++++++++++++++++++++++ cmd/acme/docker.hcl | 43 +++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 96 insertions(+) create mode 100644 cmd/acme/dim13.hcl create mode 100644 cmd/acme/docker.hcl (limited to 'cmd') diff --git a/cmd/acme/dim13.hcl b/cmd/acme/dim13.hcl new file mode 100644 index 0000000..71295dd --- /dev/null +++ b/cmd/acme/dim13.hcl @@ -0,0 +1,53 @@ +defaults { + listen = "localhost:8080" + listentls = "localhost:8443" + basedir = "~/.acme" + keysize = 2048 +} + +provider "letsencrypt" { + directory = "https://acme-v01.api.letsencrypt.org/directory" +} + +provider "letsencrypt-staging" { + directory = "https://acme-staging.api.letsencrypt.org/directory" +} + +account "webmaster" { + mail = "webmaster@dim13.org" + key = "private/webmaster.key" +} + +account "postmaster" { + mail = "postmaster@dim13.org" + key = "private/postmaster.key" +} + +desire "web" { + provider = "letsencrypt" + account = "webmaster" + key = "private/www_dim13_org.key" + cert = "certs/www_dim13_org.pem" + + altnames = [ + "www.dim13.org", + "mail.dim13.org", + "git.dim13.org", + "cvs.dim13.org", + "dim13.org", + ] +} + +desire "mail" { + provider = "letsencrypt" + account = "postmaster" + key = "private/mail_dim13_org.key" + cert = "certs/mail_dim13_org.pem" + + altnames = [ + "mail.dim13.org", + "smtp.dim13.org", + "imap.dim13.org", + "dim13.org", + ] +} diff --git a/cmd/acme/docker.hcl b/cmd/acme/docker.hcl new file mode 100644 index 0000000..80aca40 --- /dev/null +++ b/cmd/acme/docker.hcl @@ -0,0 +1,43 @@ +defaults { + gracetime = "168h" # 1 week + listen = "localhost:8080" + listentls = "localhost:8443" + basedir = ".acme" # usually "/etc/ssl" + provider = "les" + account = "webmaster" + keysize = 2048 # default key size +} + +provider "staging" { + directory = "https://acme-staging.api.letsencrypt.org/directory" +} + +account "webmaster" { + mail = "webmaster@docker.moccu.com" + key = "private/webmaster.key" +} + +account "webmaster2" { + mail = "webmaster@docker.moccu.com" + key = "private/webmaster2.key" +} + +desire "docker" { + provider = "staging" + account = "webmaster" + altnames = ["docker.moccu.com", "test.docker.moccu.com"] + key = "private/docker_moccu_com.key" + cert = "certs/docker_moccu_com.pem" +} + +desire "www" { + provider = "staging" + account = "webmaster2" + altnames = ["www.docker.moccu.com"] + key = "private/www_docker_moccu_com.key" + cert = "certs/www_docker_moccu_com.pem" +} + +hook "nginx" { + cmd = "sudo service nginx reload" +} -- cgit v1.2.3