aheathershaw/letsencrypt-linode

Go to file

Andy Heathershaw 5ec4620664 Added additional boundary checking to grep commands

2019-05-03 22:28:21 +01:00

linode-auth-hook.sh

Added checking to ensure the correct domain is located

2019-05-03 22:26:50 +01:00

linode-cleanup-hook.sh

Added additional boundary checking to grep commands

2019-05-03 22:28:21 +01:00

README.md

Added a caution about Linode's 15-minute delay in deploying records

2019-04-25 13:01:16 +01:00

README.md

Let's Encrypt plugin scripts for Linode DNS

Hook scripts for automating the issue and renewal of Let's Encrypt certificates when using Linode's DNS platform.

Installation

These scripts use Linode's official CLI client to interact with the Linode API.

Install the official Linode CLI client using Linode's official guide.

Download the linode-auth-hook.sh and linode-cleanup-hook.sh shell scripts and make a note of where you have downloaded them to.

Usage

To use the scripts for a new domain renewal, use the "manual" plugin with the extra "hook" options.

This example requests a wildcard certificate for the domain yourdomain.com - change accordingly.

certbot certonly --manual -d *.yourdomain.com -d yourdomain.com --preferred-challenges dns-01 --manual-auth-hook /path/to/linode-auth-hook.sh --manual-cleanup-hook /path/to/linode-cleanup-hook.sh.

Please note: Linode only deploy changes to their nameservers roughly every 15 minutes, so DNS records do not show up immediately. The authorisation script waits for 20 minutes after creating a record before exiting to allow the DNS records to be deployed before Let's Encrypt verifies them. Therefore this script can take some time to run. Once a certificate has been issued, renewals happen non-interactively.