This is a very simple script to automate the process of getting and renewing multiple SSL certificates for multiple domains on Uberspace. I've written a short blog entry about it.
Utilizing Let's Encrypt on Uberspace is very easy. Sadly there's one flaw: By default, all domains registered on your Uberspace are included in one certificate. This is a major privacy issue as it could reveal domains you're not officially affiliated with.
That's why I created the letsencrypt-uberspace-mgr.
Create a file ~/etc/letsencrypt_domains.conf with every domain you want to have in one certificate per line, e.g.:
1st.domain.tld,2nd.domain.tld
my.single.tld
my.other.tld,and.another.tldThen just put the script into your crontab, e.g.:
23 3 * * 5 /home/your-uberspace-user/path/to/script/letsencrypt-uberspace-mgr > ~/tmp/letsencrypt-uberspace-mgr.logI recommend using keep-until-expiring = True in your cli.ini to avoid running into Let's Encrypts Rate Limiting. Also consider using staging = True while testing the script for similar reasons.
It's possible to override every variable defined in the script to change its functionality.
- Add different E-Mail adresses per domain set
- Ease creation of new certificates
- Use URL instead of conf file to ease cert management of distributed Uberspaces
This script works. I haven't put a lot of thought or time into it, so it's not unlikely the way the script works is overly complicated (letsencrypt -c seems to be an easier way), but it works.