Skip to content
Snippets Groups Projects
Select Git revision
  • master default protected
  • massimiliano.adamo-master-patch-43524
  • devel
  • v1.3.1
  • v1.3.0
  • v1.2.7
  • v1.2.6
  • v1.2.5
  • v1.2.4
  • v1.2.3
  • v1.2.1
  • v1.2.2
  • v1.2.0
  • v1.1.1
  • v1.1.0
  • v1.0.9
  • v1.0.8
  • v1.0.7
  • v1.0.6
  • v1.0.5
  • v1.0.4
  • v1.0.3
  • v1.0.2
23 results
Compare
Massimiliano Adamo's avatar
minor fix
Max Adamo authored
82f4a23f
History
Massimiliano Adamo's avatar 82f4a23f
History
Name Last commit Last update
.gitignore
.gitlab-ci-psnc.yml
LICENSE
README.md
acme-downloader.sh
build.sh
go.mod
go.sum
main.go
README.md

acme-downloader

  1. usage
  2. compatibility
  3. build
  4. links

Fetches and stores a given Certificate, Full Chain, CA and Private Key.

It is meant to be used in conjunction within the Geant ACME infrastructure.

usage

you can use the tool as following:

acme-downloader --vault-token=<VAULT-TOKEN> --redis-token=<REDIS_TOKEN> \
    --cert-name=foo-ev-cert.geant.org --team-name=swd

If the certificate is being replaced, the tool throws an exit status equal to 64 and you can reload your application in order to use the new certificate.

You can check all the options using --help:

ACME Downloader:
  - fetches and stores a given Certificate, Full Chain, CA and Private Key

Usage:
  acme-downloader --redis-token=REDISTOKEN --vault-token=VAULTTOKEN --cert-name=CERTNAME --team-name=TEAMNAME [--silent] [--days=DAYS] [--type=TYPE] [--cert-destination=CERTDESTINATION] [--fullchain-destination=FULLCHAINDESTINATION] [--key-destination=KEYDESTINATION] [--ca-destination=CADESTINATION] [--wildcard]
  acme-downloader -h | --help
  acme-downloader -v | --version
  acme-downloader -b | --build
  acme-downloader --update
  acme-downloader --check-version

Options:
  -h --help                                     Show this screen
  -v --version                                  Print version information and exit
  -b --build                                    Print version and build information and exit
  --redis-token=REDISTOKEN                      Redis access token
  --vault-token=VAULTTOKEN                      Vault access token
  --cert-name=CERTNAME                          Certificate name
  --team-name=TEAMNAME                          Team name: swd, it, ne, ti,...
  --days=DAYS                                   Days before expiration [default: 30]
  --type=TYPE                                   Type, EV or OV [default: EV]
  --cert-destination=CERTDESTINATION            Cert Destination [default: /etc/ssl/certs/<cert-name>.crt]
  --fullchain-destination=FULLCHAINDESTINATION  Full Chain Destination[default: /etc/ssl/certs/<cert-name>_fullchain.crt]
  --key-destination=KEYDESTINATION              Key Destination [default: /etc/ssl/private/<cert-name>.key]
  --ca-destination=CADESTINATION                CA Destination [default: /etc/ssl/certs/COMODO_<type>.crt]
  --wildcard                                    The certificate type is wildcard
  --update                                      Self-updates the tool and exit
  --check-version                               Check upstream version

compatibility

Maybe 43 different platforms but tested on Linux and Windows only.

build

It compiles on several platforms and architectures.

Please run the script in this repository to check all available options:

./build.sh --help

links

The binaries and the shell script can be downloaded on Geant Artifactory