Pass raw parameter to the lego binary

[tregubovav-dev]

Is there an existing issue for this?

• [x] There is no existing issue for this feature

What are you currently unable to do

incus currently restricts configuring ACME requests with a few options. I would like to have more flexibility in managing certificate updates from my private CA. For example I would like to us ACME External Account Binding (eab) in my environment, and have ability to issue incus cluster certificate with multiple SANs.

What do you think would need to be added

Adding acme.lego_raw_params option and passing this string to the lego command-line would be helpful.

[tregubovav-dev]

P.S. Technically I would prefer to have ability to run external program or script for requesting and renewing incus certificate. I use step-ca as a private CA and RA and the step client provides more flexibility on certificate issuance.