acme-companion icon indicating copy to clipboard operation
acme-companion copied to clipboard

Published 20 hours ago verified publisher icon nginx-proxy

Wildcard certificate support with CloudFlare DNS

Open ondrejri opened this issue 2 years ago • 1 comments

Edited a few lines in /app/letsencrypt_service and /app/functions.sh to create wildcard certificate for domain. As of now it only supports wildcard certificate creation over CloudFlare dns and I tested it with:

ACME_CA_URI = "https://acme.zerossl.com/v2/DV90"

In docker-compose.yml it specified it this way:

version: "3.5"
services:`
......
  nginx:
    image: ${NGINX_IMAGE}
    container_name: ${NGINX_CONTAINER_NAME}
    restart: always
    ports:
      - ${PORT1}
      - ${PORT2}
    volumes:
      - ${VOLUME1}
      - ${VOLUME2}
      - ${VOLUME3}
      - ${VOLUME4}
  acme:
    image: ${ACME_IMAGE}
    container_name: ${ACME_CONTAINER_NAME}
    restart: always
    environment:
      - DEFAULT_EMAIL=${DEFAULT_EMAIL}
      - CF_Token=${CF_TOKEN}
      - CF_Account_ID=${CF_ACCOUNT_ID}
      - CF_Zone_ID=${CF_ZONE_ID}
      - ACME_CA_URI=${ACME_CA_URI}
      - DEBUG=1
    depends_on:
      - nginx
    volumes_from:
      - nginx:rw
    volumes:
      - ${VOLUME5}
      - ${VOLUME6}
.....

.env file:

.....
ACME_CA_URI="https://acme.zerossl.com/v2/DV90"
.....
VOLUME1=certs:/etc/nginx/certs
VOLUME2=vhost:/etc/nginx/vhost.d
VOLUME3=html:/usr/share/nginx/html
VOLUME4=/var/run/docker.sock:/tmp/docker.sock:ro
VOLUME5=/var/run/docker.sock:/var/run/docker.sock:ro
VOLUME6=acme:/etc/acme.sh
.....

And finally token permissions in CloudFlare: image

ondrejri avatar Jan 27 '22 16:01 ondrejri

would be great to have this in the main version

ne0YT avatar Jun 16 '23 14:06 ne0YT