appengine icon indicating copy to clipboard operation
appengine copied to clipboard
verified publisher icon golang

let's encrypt autocert

Open vendelin8 opened this issue 7 years ago • 3 comments

Hi,

I know that gcloud has SSL support, but it doesn't cover wildcard subdomains like *.example.com. I'm working on a gcloud project that has to have subdomains like this, and I'd like to add autocert feature with let's encrypt. I found this example: https://stackoverflow.com/questions/37321760/how-to-set-up-lets-encrypt-for-a-go-server-application And a couple of others, but I'd need to add the listener of the cert manager to the http ListenAndServe method in all the examples I found. I can't do that with appengine, because it creates http listeners out of box.

Please let me know, how could I fix this issue. Thanks!

vendelin8 avatar Jun 25 '18 12:06 vendelin8

Like you mention, I don't think you can add this due to the way App Engine handles and automatically sets up http.ListenAndServe.

I love Let's Encrypt, but there's an even easier solution: https://cloud.google.com/appengine/docs/standard/python/securing-custom-domains-with-ssl -- let Google generate and manage your cert for you, or upload your Let's Encrypt generated cert to us. I recommend the former, since it's super easy and will handle pretty much everything for you.

sbuss avatar Jun 25 '18 19:06 sbuss

Yep. Pretty much everything, but that doesn't cover wildcard subdomains. And I really need that.

Would it be possible for the appengine to config http Handler object somehow?

vendelin8 avatar Jun 26 '18 07:06 vendelin8

Is it at least considered, or should I try other things?

vendelin8 avatar Jul 03 '18 05:07 vendelin8