Reference - CLI - certbot
Command
./adop certbot <subcommand> [<options>]
Used for running ADOP Certbot related commands.
Originally, this script was developed in order to support Docker Registry, but while we developing it, we realized, that it’s actually can be more abstract and used for entire stack, so that you can have SSL-enabled secure stack.
Subcommands
gen-export-certs
Subcommand | |
---|---|
gen-export-certs [<options>] | Generates self-signed certificates and export them to the ADOP Proxy (NGINX) |
Option | |
<domain-name> | Sets the Domain Name for which self-signed certificates will be issued (required). |
<service-name> | Sets the Service Name, where <SERVICE-NAME> is the reference name for which you want to generate certificates (optional). In case of "registry" service-name specifically, script will also export certificates to the ADOP Docker Registry certs volume. |
gen-letsencrypt-certs
Subcommand | |
---|---|
gen-letsencrypt-certs [<options>] | Request (generate) SSL certificates issued by Let's Encrypt. |
Option | |
<domain-name> | Sets the Domain Name for which certificates by Let's Encrypt will be issued (required). |
<service-name> | Sets the Service Name, where <SERVICE-NAME> is the reference name for which you want to generate certificates (optional). |
export-letsencrypt-certs
Subcommand | |
---|---|
export-letsencrypt-certs [<options>] | Export SSL certificates issued by Let's Encrypt to the ADOP Proxy (NGINX) container. |
Option | |
<domain-name> | Sets the Domain Name for which, certificates issued by Let's Encrypt before (by gen-letsencrypt-certs), will be exported to the Docker volumes (required). |
<service-name> | Sets the Service Name, where <SERVICE-NAME> is the reference name for which you want to enable NGINX configuration from sites-available to sites-enabled (optional) |
Examples
Generate and export self-signed certificates
./adop certbot gen-export-certs registry.<adop-ip-address>.nip.io registry
Request (generate) issued by Let’s Encrypt certificates
./adop certbot gen-letsencrypt-certs registry.<adop-ip-address>.nip.io registry
./adop certbot gen-letsencrypt-certs <adop-ip-address>.nip.io
Export issued by Let’s Encrypt certificates to the ADOP Proxy volume and Enable NGINX link configuration from sites-available to sites-enabled
./adop certbot export-letsencrypt-certs registry.<adop-ip-address>.nip.io registry
./adop certbot export-letsencrypt-certs <adop-ip-address>.nip.io