Skip to content

Instantly share code, notes, and snippets.

@port19x

port19x/x.md

Last active October 10, 2023 12:19
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save port19x/f2e2c6a0b51e6b7fd960bbc33905763d to your computer and use it in GitHub Desktop.
Save port19x/f2e2c6a0b51e6b7fd960bbc33905763d to your computer and use it in GitHub Desktop.
Download ZIP
Out of band wildcard certificate generation with letsencrypt for
Raw
x.md

./.access should have 400 permissions and should contain dns_digitalocean_token = <redacted>

sudo pacman -S certbot-dns-digitalocean
sudo certbot certonly --dns-digitalocean --dns-digitalocean-credentials ./.access -d '*.hsnipe.moe' -d 'hsnipe.moe'
sudo cat /etc/letsencrypt/live/hsnipe.moe/privkey.pem /etc/letsencrypt/live/hsnipe.moe/cert.pem > haproxy.pem
scp haproxy.pem root@hsnipe.moe:/mnt/

Rest of configuration is done on server side / infra code

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment