Project

kingsly-certbot

0.04
No release in over 3 years
Low commit activity in last 3 years
kingsly-certbotgojekfarm/kingslyHomepageDocumentationSource CodeBug TrackerWiki
kingsly-certbot would update the local certs and update them from the ones generated by kingsly
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
6,880
Stars
67
Forks
15
Watchers
18
 Releases
Current version
0.3.2
Total releases
4
First release
2019-02-13
Latest release
2019-02-25
 Issues
Open Issues
5
Closed Issues
23
Total Issues
28
Issue Closure Rate
82%
 Pull Requests
Open Pull Requests
10
Closed Pull Requests
12
Merged Pull Requests
8
Pull Request Acceptance Rate
26%
 Development
Primary Language
Ruby
Licenses
Apache-2.0
Average date of last 50 commits
2019-03-12
Reverse Dependencies
0

 Dependencies

Development

bundler
~> 2.0, >= 2.0.1
rake
~> 10.5, >= 10.5.0
rspec
~> 3.8, >= 3.8.0
rubocop
~> 0.63.1
webmock
~> 3.5, >= 3.5.1

Runtime

sentry-raven
~> 2.9, >= 2.9.0
 Project Readme

Kingsly

Build Status

An attempt to automate SSL certs management. This Cert manager helps generate SSL certs, renews them automatically. Release blog post

Assumptions

  • The FQDN points to a public IP address
  • An FQDN points to only one IP address

Dev Setup

Install docker-compose

If you're on OS X, please follow the instructions to install docker. Or if you're on a Unix based distribution, you can follow the instructions here to install docker-compose.

# For Linux based machines
$ sudo curl -L "https://github.com/docker/compose/releases/download/1.24.0/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-
$ sudo chmod +x /usr/local/bin/docker-compose
  • Run $ make .env to create .env for the application from .env.sample

Opening the web interface on your dev machine

$ make docker.start

You can then open localhost:8080

To stop the docker containers

$ make docker.stop

Running the specs

$ make rspec

Example APIs

  • Creating SSL certs for a domain:
    • Request:
curl -X POST http://kingsly.host/v1/cert_bundles \
  -u admin:password \
  -H 'Content-Type: application/json' \
  -d '{
        "top_level_domain":"your-domain.com",
        "sub_domain": "your-sub-domain"
    }'
  • Response:
'{
  "private_key":"-----BEGIN RSA PRIVATE KEY-----\nFOO...\n-----END RSA PRIVATE KEY-----\n",
  "full_chain":"-----BEGIN CERTIFICATE-----\nBAR...\n-----END CERTIFICATE-----\n"
}'

Deploying

Please refer to deployment docs here

TODO

  • check for ACME account creation without email id (maybe initialize account only once?)
  • tracks if the client has the updated cert (WIP: #5)

License

Copyright 2018, GO-JEK Tech <http://gojek.tech>

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.