You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Yes, I've searched similar issues on GitHub and didn't find any.
How do you use lego?
Library
Detailed Description
Hey there!
I am currently using go-acme/lego to renew a number of certificates that each contain a large list of SAN, all of which belong to the same domain name (i.e. mydomain.com), I am using DNS TXT challenges to prove ownership of said domains.
The main issue I'm facing is renew times, some of these certificates have about 100 SAN, and due to API rate limits on the DNS provider and DNS propagation I can only do the challenges at a certain pace.
I am wondering if there is room for a feature where we can somehow skip authorizations if there is a valid one already? This is what I am seeing when validating all of the SAN at the moment, and getting this after:
I'm not sure to understand: lego already skips authorizations, but to be able to know the state of the authorizations we must call the API to obtain authorizations.
The main issue I'm facing is renew times, some of these certificates have about 100 SAN, and due to API rate limits on the DNS provider and DNS propagation I can only do the challenges at a certain pace.
Not sure to understand: do you mean that the renew takes too much time?
What is the link with the DNS rate limits?
Can you provide more details?
Welcome
How do you use lego?
Library
Detailed Description
Hey there!
I am currently using go-acme/lego to renew a number of certificates that each contain a large list of SAN, all of which belong to the same domain name (i.e. mydomain.com), I am using DNS TXT challenges to prove ownership of said domains.
The main issue I'm facing is renew times, some of these certificates have about 100 SAN, and due to API rate limits on the DNS provider and DNS propagation I can only do the challenges at a certain pace.
I am wondering if there is room for a feature where we can somehow skip authorizations if there is a valid one already? This is what I am seeing when validating all of the SAN at the moment, and getting this after:
Thank you for your hard work maintainers!
Best,
Rafa.
The text was updated successfully, but these errors were encountered: