science:applied:info-tech:certbot

certbot

certbot is a command to manage SSL certificates.

Install

use docker-compose.yml 

...
  certbot:
    restart: "no"
    image: certbot/certbot:latest
    profiles: ["_"]
    volumes:
      - ./certbot/etc/:/etc/letsencrypt/
      - ./certbot/var/:/var/lib/letsencrypt/
      - ./certbot/public/:/public/  # dir for webroot (shared with nginx)
...

nginx setup

By the following nginx config, retrieving new certificate becomes easy. 

server {
  listen 80;
  location /.well-known/ {
    root /srv/http/certbot/;  # dir for webroot (specified in docker-compose.yml)
  }
  location / {
    return 301 https://$host$request_uri;
  }
}

Usage

Retrieve new certificate

docker-compose run certbot certonly --webroot -w /public -d <DOMAIN> --agree-tos

Renew all known certificates

docker-compose run certbot renew
  • Last modified: 8 days ago
  • by falsycat