Comments (7)
MoebiuZ
commented on July 30, 2024
The reason why Letsencrypt doesn't recommend to install via pip or setup.py is just a security recommendation, to avoid installing plugins or the software itself from unknown/non-oficial sources.
This plugin is not "official", so if you use it is under your responsibility.
That said, the plugin itself will not (I think) work with the wrapper "letsencrypt-auto", but you can use it calling "letsencrypt" from the virtualenv generated by "auto".
For that, you have to install it on the virtualenv:
source /home/your-user/.local/share/letsencrypt/bin/activate
pip install letsencrypt-s3front
or
source /home/your-user/.local/share/letsencrypt/bin/activate
git clone https://github.com/dlapiduz/letsencrypt-s3front.git
cd letsencrypt_s3front
python setup.py install
also, you will need to source the virtualenv to launch:
AWS_ACCESS_KEY_ID="your_key" \
AWS_SECRET_ACCESS_KEY="your_secret" \
letsencrypt --agree-tos -a letsencrypt-s3front:auth \
--letsencrypt-s3front:auth-s3-bucket the_bucket \
[ --letsencrypt-s3front:auth-s3-region your-bucket-region-name ] (default is us-west-1) \
-i letsencrypt-s3front:installer \
--letsencrypt-s3front:installer-cf-distribution-id your_cf_distribution_id \
-d the_domain
Probably there are a simpler ways, but that's how I do it.
from certbot-s3front.
dlapiduz
commented on July 30, 2024
@ezeeetm did this fix your issue? please ping me if you are still having problems.
from certbot-s3front.
ezeeetm
commented on July 30, 2024
@dlapiduz yes, sir. thank you!
from certbot-s3front.
agis
commented on July 30, 2024
@dlapiduz I've tried your instructions but I get the following (I'm on Debian):
$ cat cf-letsencrypt.sh
source /home/xxx/.local/share/letsencrypt/bin/activate
AWS_ACCESS_KEY_ID=xxx \
AWS_SECRET_ACCESS_KEY=xxx \
letsencrypt --agree-tos -a letsencrypt-s3front:auth \
--letsencrypt-s3front:auth-s3-bucket xxx \
--letsencrypt-s3front:auth-s3-region eu-central-1 \
-i letsencrypt-s3front:installer \
--letsencrypt-s3front:installer-cf-distribution-id xxx \
-d foo.example.com
$ bash cf-letsencrypt.sh
letssencrypt-auto [SUBCOMMAND] [options] [-d domain] [-d domain] ...
Certbot can obtain and install HTTPS/TLS/SSL certificates. By default,
it will attempt to use a webserver both for obtaining and installing the
cert. Major SUBCOMMANDS are:
(default) run Obtain & install a cert in your current webserver
certonly Obtain cert, but do not install it (aka "auth")
install Install a previously obtained cert in a server
renew Renew previously obtained certs that are near expiry
revoke Revoke a previously obtained certificate
register Perform tasks related to registering with the CA
rollback Rollback server configuration changes made during install
config_changes Show changes made to server config during installation
plugins Display information about installed plugins
letsencrypt: error: unrecognized arguments: --letsencrypt-s3front:auth-s3-bucket xxx --letsencrypt-s3front:auth-s3-region eu-central-1 --letsencrypt-s3front:installer-cf-distribution-id xxx
Any ideas?
from certbot-s3front.
jhnferraris
commented on July 30, 2024
@agis Did you get around with your problem?
from certbot-s3front.
agis
commented on July 30, 2024
@jhnferraris yes, this ended up working:
#!/bin/bash
source /home/foo/.local/share/letsencrypt/bin/activate
AWS_ACCESS_KEY_ID=XXXXXXXXXXXXXXXX \
AWS_SECRET_ACCESS_KEY=XXXXXXXXXXXXXX \
certbot --agree-tos -a certbot-s3front:auth \
--certbot-s3front:auth-s3-bucket YOUR-BUCKET-NAME \
--certbot-s3front:auth-s3-region YOUR-REGION-NAME \
-i certbot-s3front:installer \
--certbot-s3front:installer-cf-distribution-id XXXXXXXXXXX \
-d your-domain.comIn other words, replace --letsencrypt- in the arguments with --certbot-.
from certbot-s3front.
jetoneza
commented on July 30, 2024
$ cat upload-ssl-s3.sh
#!/bin/bash
source /home/foo/.local/share/letsencrypt/bin/activate
AWS_ACCESS_KEY_ID=XXX \
AWS_SECRET_ACCESS_KEY=XXX \
certbot --agree-tos -a certbot-s3front:auth \
--certbot-s3front:auth-s3-bucket XXX \
--certbot-s3front:auth-s3-region us-east-1 \
-i certbot-s3front:installer \
--certbot-s3front:installer-cf-distribution-id XXX \
-d mydomain.com
$ bash upload-ssl-s3.sh
usage:
letsencrypt-auto [SUBCOMMAND] [options] [-d DOMAIN] [-d DOMAIN] ...
Certbot can obtain and install HTTPS/TLS/SSL certificates. By default,
it will attempt to use a webserver both for obtaining and installing the
certificate.
certbot: error: unrecognized arguments: --certbot-s3front:auth-s3-bucket XXX --certbot-s3front:auth-s3-region us-east-1 --certbot-s3front:installer-cf-distribution-id XXX
The same error.
from certbot-s3front.
Related Issues (20)
- ot
- This worked like a dream! Thank you. =) HOT 1
- Issue installing with certbot 0.23.0 HOT 1
- NoCredentialsError HOT 3
- Max retries exceeded with url HOT 3
- Can generate initial certificate, but silently fails to renew HOT 6
- [0.4.0] SyntaxError with python 3.6.6 HOT 1
- KeyError: 'IAMCertificateId' on new distribution HOT 10
- Error in configuring distribution with certificate HOT 1
- Cannot run on raspbian stretch HOT 1
- Not Python3 compatible HOT 2
- AttributeError: module 'certbot.interfaces' has no attribute 'RenewDeployer' HOT 1
- Configure dns in aws route 53
- Unreliable with load balancers and API Gateways HOT 1
- issue with certificate generation HOT 1
- Support non Amazon hosts (region endpoints)
- Unable to upload/update renewed cert via s3front HOT 1
- Add support for certbot 2.x HOT 1
- Failing when trying to use the docker container
- certbot: error: unrecognized arguments: --certbot-s3front:auth-s3-bucket my-bucket HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from certbot-s3front.