forked from home-assistant/addons
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Added DNS challenge support (home-assistant#701)
* Added DNS challenge support * Switch to prebuild pip3 certbot package. Update to python3. * Code cleanup. Updates according to bashio variable guidelines. * Update required fields to no preset variable to force entry. Added list of possible values for fields. * Added README instructions * Added missing linebreak * Updates according to "ShellCheck". * Further "ShellCheck" cleanup * Added certbot dns plugin version * Further "ShellCheck" corrections * Further "ShellCheck" updates * Update README.md * Testing other linebreaks * add .gitignore * Cleanup * > instead of >> * Further cleanup and optimization for new UI features * Added http port description * Removed unnecessary info log entry * Further optimization for UI * setting optional settings. port_description fix. * Update config.json * Delete .gitignore * Update config.json * Update run.sh * Update README.md * Update README.md
- Loading branch information
1 parent
65e8130
commit eaf609e
Showing
6 changed files
with
223 additions
and
20 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,5 +1,8 @@ | ||
# Changelog | ||
|
||
## 4.0 | ||
- Added support for dns challenges | ||
|
||
## 3.0 | ||
- Use our Python base images with cerbot 0.32.0 | ||
|
||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,113 @@ | ||
# Hass.io Core Add-on: Letsencrypt | ||
|
||
Let's Encrypt is a certificate authority that provides free X.509 certificates for Transport Layer Security encryption via an automated process designed to eliminate the hitherto complex process of manual creation, validation, signing, installation, and renewal of certificates for secure websites. | ||
|
||
![Supports aarch64 Architecture][aarch64-shield] ![Supports amd64 Architecture][amd64-shield] ![Supports armhf Architecture][armhf-shield] ![Supports armv7 Architecture][armv7-shield] ![Supports i386 Architecture][i386-shield] | ||
|
||
## About | ||
|
||
Setting up Letsencrypt allows you to use validated certificates for your webpages and webinterfaces. | ||
It requires you to own the domain you are requesting the certificate for. | ||
|
||
The generated certificate can be used within others addons. | ||
|
||
## Installation | ||
|
||
The installation of this add-on is straightforward and easy to do. | ||
|
||
1. Navigate in your Home Assistant frontend to **Hass.io** -> **Add-on Store**. | ||
2. Find the "letsencrypt" add-on and click it. | ||
3. Click on the "INSTALL" button. | ||
|
||
## How to use | ||
|
||
To use this add-on, you have two options on how to get your certificate: | ||
|
||
1. http challenge | ||
- Requires Port 80 to be available from the internet and your domain assigned to the externally assigned IP address | ||
- Doesnt allow wildcard certificates (*.yourdomain.com). | ||
|
||
2. dns challenge | ||
- Requires you to use one of the supported DNS providers (See "Supported DNS providers" below) | ||
- Allows to request wildcard certificates (*.yourdomain.com) | ||
- Doesnt need you to open a port to your hass.io host on your router. | ||
|
||
You always need to provide the following entries within the configuration: | ||
|
||
```json | ||
"email": "[email protected]" | ||
"domains": "yourdomain.com" /// in case of requesting a wildcard certificate, add "*.yourdomain.com". | ||
"challenge": "http OR dns" | ||
``` | ||
|
||
IF you choose "dns" as "challenge", you will also need to fill: | ||
```json | ||
"dnsprovider": "" (Add the dnsprovider of your choice from the list of "Supported DNS providers" below) | ||
|
||
In addition fill the fields according to the credentials required by your dns provider. | ||
``` | ||
|
||
## Configuration | ||
|
||
Add-on configuration: | ||
|
||
```json | ||
{ | ||
"email": "[email protected]", | ||
"domains": [ | ||
"home-assistant.io" | ||
], | ||
"challenge": "dns", | ||
"dns": { | ||
"provider": "dns-cloudflare", | ||
"cloudflare_email": "[email protected]", | ||
"cloudflare_api_key": "31242lk3j4ljlfdwsjf0" | ||
} | ||
} | ||
``` | ||
## Supported DNS providers | ||
|
||
```json | ||
dns-cloudflare | ||
dns-cloudxns | ||
dns-digitalocean | ||
dns-dnsimple | ||
dns-dnsmadeeasy | ||
dns-gehirn | ||
dns-google (Currently not fully implemented) | ||
dns-linode | ||
dns-luadns | ||
dns-nsone | ||
dns-ovh | ||
dns-rfc2136 | ||
dns-route53 | ||
dns-sakuracloud | ||
``` | ||
|
||
## Known issues and limitations | ||
|
||
- Currently the google dns provider is not supported. Let us know if you want to use google, so we can test the required settings together. | ||
|
||
## Support | ||
|
||
Got questions? | ||
|
||
You have several options to get them answered: | ||
|
||
- The [Home Assistant Discord Chat Server][discord]. | ||
- The Home Assistant [Community Forum][forum]. | ||
- Join the [Reddit subreddit][reddit] in [/r/homeassistant][reddit] | ||
- Check out certbots page [certbot]. | ||
|
||
In case you've found an bug, please [open an issue on our GitHub][issue]. | ||
|
||
[aarch64-shield]: https://img.shields.io/badge/aarch64-yes-green.svg | ||
[amd64-shield]: https://img.shields.io/badge/amd64-yes-green.svg | ||
[armhf-shield]: https://img.shields.io/badge/armhf-yes-green.svg | ||
[armv7-shield]: https://img.shields.io/badge/armv7-yes-green.svg | ||
[i386-shield]: https://img.shields.io/badge/i386-yes-green.svg | ||
[discord]: https://discord.gg/c5DvZ4e | ||
[forum]: https://community.home-assistant.io | ||
[issue]: https://github.com/home-assistant/hassio-addons/issues | ||
[certbot]: https://certbot.eff.org | ||
[reddit]: https://reddit.com/r/homeassistant |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters