Skip to content

EightShift/lecert

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
lecert
lecert
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
setup.py
setup.py
 
 

Repository files navigation

lecert

Lecert is a Python module for obtaining SSL certificates from Let's Encrypt for self-service projects.

Installation

pip install lecert

Usage

To obtain a new certificate, simply call the get_cert function:

import lecert

certs_dir = './certs'
email = '[email protected]
domains = ['example.com', 'example.org']

result = lecert.get_cert(certs_dir, email, domains)

The get_cert function will create a private key and CSR, issue a certificate from Let's Encrypt, and save the certificate and private key to the specified directory.

To make the contents of the ACME challenge directory available, you can add the following route to your web application:

from flask import Flask, send_file, abort

app = Flask(__name__)

@app.route('/.well-known/acme-challenge/<challenge_token>')
def acme_challenge(challenge_token):
	validation_path = lecert.get_validation_path(certs_dir, challenge_token)
	if not validation_path:
		return abort(404)
	
	return send_file(validation_path)

Options

The get_cert function takes the following optional arguments:

  • www: Whether to include the www subdomain in the certificate.
  • cert_lifetime: The lifetime of the certificate in days.
  • timeout: The timeout in seconds for the certificate issuance process.
  • force: Whether to force the certificate issuance even if the current certificate is still valid.
  • privkey_file_name: The name of the private key file.
  • cert_file_name: The name of the certificate file.
  • backup_time_format: Time format for backup directories.

Example

The following example shows how to use LeCert to obtain and maintain SSL certificates for a small web application:

import lecert
import schedule
import time

certs_dir = './certs'
domains = ['example.com', 'example.org']
email = '[email protected]

def get_cert_job():
	result = lecert.get_cert(certs_dir, email, domains)
	if result:
		print('Certificate obtained successfully.')
	else:
		print('Error obtaining certificate.')

# Schedule the certificate renewal job to run everyday
schedule.every().day.do(get_cert_job)

# Start the scheduler
while True:
	schedule.run_pending()
	time.sleep(1)

This example will automatically obtain a new certificate everyday and save it to the certs directory. The contents of the ACME challenge directory will be made available at /.well-known/acme-challenge/<challenge_token>.

License

This project is licensed under the MIT License

About

Python module for obtaining SSL certificates from Let's Encrypt for self-service projects.

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages