aboutsummaryrefslogtreecommitdiff
path: root/README.md
blob: e33960f21387419d2a6435ac4580949b5cc491ca (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
# Automatic Certificate Management Environment (ACME)

## Certificate Management

- [ ] Registration
- [ ] Account Recovery
- [ ] Identifier Authorization
- [ ] Certificate Issuance
- [ ] Certificate Revocation

## Identifier Validation Challenges

- [ ] HTTP
- [ ] TLS with Server Name Indication (TLS SNI)
- [ ] Proof of Possession of a Prior Key
- [ ] DNS

## File structure

/var/lib/acme
	accounts/
		@mail/		(account ID)
			privkey
	certs/
		example.com/	(cert ID)
			cert
			chain
			fullchain	-> /etc/ssl/certs/examople_com.pem
			privkey		-> /etc/ssl/private/example_com.key
	desired/
		example.com:	www.example.com example.com (text file)