dehydrated-hook-cloudflare icon indicating copy to clipboard operation
dehydrated-hook-cloudflare copied to clipboard

Published 20 hours ago verified publisher icon socram8888

Metadata

Pure bash dehydrated dns-01 hook for CloudFlare

dehydrated-hook-cloudflare

Single file, pure Bash dehydrated (formely letsencrypt.sh) hook using the CloudFlare API implementing the dns-01 ACME challenge.

Requirements

All the packages are available on the latest Debian stable (jessie, at the time of writing), and may be installed using:

sudo apt-get install bash awk jq publicsuffix

Configuration

This hook supports authenticating using either a bearer token or the global API key. Both can be obtained at the "API tokens" section.

Bearer token

This is the preferred method, as the allowed operations can be limited to updating a single DNS zone.

For this method, you'd need to export the CF_TOKEN variable, with a suitable token that has read/write access to the DNS zone for which you want to issue certificates.

API key

This method is less secure, as if someone were capable of reading these keys they'd have full access to your account.

For this method, you'd need to export the CF_EMAIL and CF_KEY variables with your CloudFlare email and API key respectively.

Metadata

23
Stars
7
Forks
Watchers

Owner

verified publisher icon socram8888

Metadata

Pure bash dehydrated dns-01 hook for CloudFlare

Back