2019-03-08 20:47:06 +02:00
|
|
|
---
|
2024-08-14 23:55:11 +02:00
|
|
|
title: "Lego"
|
2019-03-08 20:47:06 +02:00
|
|
|
date: 2019-03-03T16:39:46+01:00
|
|
|
|
|
draft: false
|
2024-08-14 23:55:11 +02:00
|
|
|
chapter: false
|
2019-03-08 20:47:06 +02:00
|
|
|
---
|
|
|
|
|
|
|
|
|
|
Let's Encrypt client and ACME library written in Go.
|
|
|
|
|
|
|
|
|
|
## Features
|
|
|
|
|
|
2022-06-22 18:57:50 +02:00
|
|
|
- ACME v2 [RFC 8555](https://www.rfc-editor.org/rfc/rfc8555.html)
|
2023-05-28 10:31:08 +02:00
|
|
|
- Support [RFC 8737](https://www.rfc-editor.org/rfc/rfc8737.html): TLS Application‑Layer Protocol Negotiation (ALPN) Challenge Extension
|
|
|
|
|
- Support [RFC 8738](https://www.rfc-editor.org/rfc/rfc8738.html): issues certificates for IP addresses
|
|
|
|
|
- Support [draft-ietf-acme-ari-01](https://datatracker.ietf.org/doc/draft-ietf-acme-ari/): Renewal Information (ARI) Extension
|
2019-03-08 20:47:06 +02:00
|
|
|
- Register with CA
|
|
|
|
|
- Obtain certificates, both from scratch or with an existing CSR
|
|
|
|
|
- Renew certificates
|
|
|
|
|
- Revoke certificates
|
|
|
|
|
- Robust implementation of all ACME challenges
|
|
|
|
|
- HTTP (http-01)
|
|
|
|
|
- DNS (dns-01)
|
|
|
|
|
- TLS (tls-alpn-01)
|
|
|
|
|
- SAN certificate support
|
2023-05-15 11:59:38 +02:00
|
|
|
- [CNAME support](https://letsencrypt.org/2019/10/09/onboarding-your-customers-with-lets-encrypt-and-acme.html) by default
|
2024-08-14 23:55:11 +02:00
|
|
|
- Comes with multiple optional [DNS providers]({{% ref "dns" %}})
|
|
|
|
|
- [Custom challenge solvers]({{% ref "usage/library/Writing-a-Challenge-Solver" %}})
|
2019-03-08 20:47:06 +02:00
|
|
|
- Certificate bundling
|
|
|
|
|
- OCSP helper function
|
