chef-acme - Chef cookbook to request SSL certificates at Let's Encrypt

  •        5

Automatically get/renew free and trusted certificates from Let's Encrypt ( ACME is the Automated Certificate Management Environment protocol used by Let's Encrypt. Installs the required acme-client rubygem.



Related Projects

acme - :lock: acmetool, an automatic certificate acquisition tool for ACME (Let's Encrypt)

  •    Go

acmetool is an easy-to-use command line tool for automatically acquiring certificates from ACME servers (such as Let's Encrypt). Designed to flexibly integrate into your webserver setup to enable automatic verification. Unlike the official Let's Encrypt client, this doesn't modify your web server configuration.You can perform verifications using port 80 or 443 (if you don't yet have a server running on one of them); via webroot; by configuring your webserver to proxy requests for /.well-known/acme-challenge/ to a special port (402) which acmetool can listen on; or by configuring your webserver not to listen on port 80, and instead running acmetool's built in HTTPS redirector (and challenge responder) on port 80. This is useful if all you want to do with port 80 is redirect people to port 443.

acme-client - Let's Encrypt / ACME client written in PHP for the CLI.

  •    PHP

kelunik/acme-client is an ACME client written in PHP. ACME is the protocol that powers the Let's Encrypt certificate authority.

acme-dns - Limited DNS server with RESTful HTTP API to handle ACME DNS challenges easily and securely

  •    Go

A simplified DNS server with a RESTful HTTP API to provide a simple way to automate ACME DNS challenges. Many DNS servers do not provide an API to enable automation for the ACME DNS challenges. Those which do, give the keys way too much power. Leaving the keys laying around your random boxes is too often a requirement to have a meaningful process automation.

dehydrated - letsencrypt/acme client implemented as a shell-script – just add water

  •    Shell

It uses the openssl utility for everything related to actually handling keys and certificates, so you need to have that installed. Please keep in mind that this software and even the acme-protocol are relatively young and may still have some unresolved issues. Feel free to report any issues you find with this script or contribute by submitting a pull request.

certbot - Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server

  •    Python

Certbot is part of EFF’s effort to encrypt the entire Internet. Secure communication over the Web relies on HTTPS, which requires the use of a digital certificate that lets browsers verify the identity of web servers (e.g., is that really Web servers obtain their certificates from trusted third parties called certificate authorities (CAs). Certbot is an easy-to-use client that fetches a certificate from Let’s Encrypt—an open certificate authority launched by the EFF, Mozilla, and others—and deploys it to a web server. Anyone who has gone through the trouble of setting up a secure website knows what a hassle getting and maintaining a certificate is. Certbot and Let’s Encrypt can automate away the pain and let you turn on and manage HTTPS with simple commands. Using Certbot and Let's Encrypt is free, so there’s no need to arrange payment.

chef-cookbook - Development repository for Chef cookbook RabbitMQ

  •    Ruby

This is a cookbook for managing RabbitMQ with Chef. It is intended for RabbitMQ 3.5.8 or later releases and targets Chef 12.1 and later.This cookbook depends on the Erlang cookbook.

windows - Development repository for Chef Cookbook windows

  •    Ruby

Provides a set of Windows-specific resources to aid in the creation of cookbooks/recipes targeting the Windows platform. As of Chef Client 13.0+ and 13.4+ windows_task and windows_path are now included in the Chef client. windows_task underwent a full rewrite that greatly improved the functionality and idempotency of the resource. We highly recommend using these new resources by upgrading to Chef 13.4 or later. If you are running these more recent Chef releases the windows_task and windows_path resources within chef-client will take precedence over those in this cookbook. In September 2018 we will release a new major version of this cookbook that removes windows_task and windows_path.

cassandra-chef-cookbook - Chef cookbook for Apache Cassandra, DataStax Enterprise (DSE) and DataStax agent

  •    Ruby

This is a Chef cookbook for Apache Cassandra (DataStax Community Edition) as well as DataStax Enterprise. It uses officially released packages and provides an Upstart service script. It has fairly complete support for adjustment of Cassandra configuration parameters using Chef node attributes.

chef-rvm - Chef cookbook with resources to install and configure Ruby via the Ruby Version Manager (RVM)

  •    Ruby

There is currently a major rewrite going on with this cookbook to simply the interface to RVM with Chef. Expect the master branch to be very broken until there is a 1.0 release. All previous pull requests will need to rebase to the newer master to contribute to the new Resource based cookbook. Manages system-wide and per-user RVMs and manages installed Rubies. Several resources are defined to accomplish these tasks.

dokku-letsencrypt - BETA: Automatic Let's Encrypt TLS Certificate installation for dokku

  •    Shell

dokku-letsencrypt is the official plugin for dokku that gives the ability to automatically retrieve and install TLS certificates from During ACME validation, your app will stay available at any time.Note: Your app must already be deployed and accessible in the browser in order to add letsencrypt to your app. Your app just being created is not enough. If you need to, add a temporary certificate to your app prior to adding letsencrypt by running dokku certs:generate <app> DOMAIN to make your app accessible.

chef-client - Development repository for Chef Client cookbook

  •    Ruby

This cookbook is used to configure a system as a Chef Client. See USAGE.

chef-sugar - Chef Sugar is a Gem & Chef Recipe that includes series of helpful sugar of the Chef core and other resources to make a cleaner, more lean recipe DSL, enforce DRY principles, and make writing Chef recipes an awesome experience!

  •    Ruby

If you want to develop/hack on chef-sugar, please see the Simply depend on this cookbook in the metadata of your cookbook and the gem will be installed and required..

nagios - Development repository for the nagios cookbook

  •    Ruby

Installs and configures Nagios server. Chef nodes are automatically discovered using search, and Nagios host groups are created based on Chef roles and optionally environments as well. Because of the heavy use of search, this recipe will not work with Chef Solo, as it cannot do any searches without a server.

apache2 - Development repository for the apache2 cookbook

  •    Ruby

This cookbook provides a complete Debian/Ubuntu style Apache HTTPD configuration. Non-Debian based distributions such as Red Hat/CentOS, ArchLinux and others supported by this cookbook will have a configuration that mimics Debian/Ubuntu style as it is easier to manage with Chef. This cookbook ships with templates of these scripts for non Debian/Ubuntu platforms. The scripts are used in the Definitions below.

certmagic - Automatic HTTPS for any Go program: fully-managed TLS certificate issuance and renewal

  •    Go

CertMagic is the most mature, robust, and capable ACME client integration for Go. With CertMagic, you can add one line to your Go application to serve securely over TLS, without ever having to touch certificates.

consul - Development repository for the consul cookbook

  •    Ruby

Application cookbook which installs and configures Consul. Consul is a tool for discovering and configuring services within your infrastructure. This is an application cookbook which takes a simplified approach to configuring and installing Consul. Additionally, it provides Chef primitives for more advanced configuration.

rancher-letsencrypt - :cow: Rancher service that obtains and manages free SSL certificates from the Let's Encrypt CA

  •    Go

A Rancher service that obtains free SSL/TLS certificates from the Let's Encrypt CA, adds them to Rancher's certificate store and manages renewal and propagation of updated certificates to load balancers. If using the HTTP challenge, a reverse proxy that routes to rancher-letsencrypt.

chef-os-hardening - This chef cookbook provides numerous security-related configurations, providing all-round base protection

  •    Ruby

This cookbook provides numerous security-related configurations, providing all-round base protection. In the current implementation different components are located in the different recipes. See the available recipes or default.rb for possible component names.

ruby_rbenv - Development repository for the ruby_rbenv cookbook

  •    Ruby

Manages rbenv and its installed Rubies. This cookbook requires Chef 13.0+.