Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Certificate signing with certbot? #63

Open
da2x opened this issue Aug 4, 2017 · 0 comments
Open

Certificate signing with certbot? #63

da2x opened this issue Aug 4, 2017 · 0 comments
Labels
enhancement

Comments

@da2x
Copy link
Contributor

da2x commented Aug 4, 2017

Prompt the user for a public hostname, lookup the hostname with an authoritative DNS provider like Google (8.8.8.8). Fully qualified domain name? Does an authorative DNS provider know about the domain? Great, then we can use Let’s Encrypt to get a properly signed certificate! Install and use certbot to obtain certificates from Let’s Encrypt, and use these certificates instead of self-signing or asking user to submit to a CA.

certbot needs port 80 once per week to function. A cronjob set to run weekly could run systemctl stop webpy.service && certbot renew ; systemctl start webpy.service to keep certbot happy and the certificates fresh.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@da2x @jullrich