certmagic vs nacl

Our great sponsors

WorkOS - The modern identity platform for B2B SaaS

InfluxDB - Power Real-Time Data Analytics at Scale

SaaSHub - Software Alternatives and Reviews

Our great sponsors

certmagic		nacl
	Project
13	Mentions	1
4,827	Stars	540
1.4%	Growth	-
8.2	Activity	0.0
5 days ago	Latest Commit	over 1 year ago
Go	Language	Go
Apache License 2.0	License	BSD 3-clause "New" or "Revised" License

The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

certmagic

Posts with mentions or reviews of certmagic. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-10-18.

Show HN: Clace – Platform for secure internal web applications
6 projects | news.ycombinator.com | 18 Oct 2023
Who is using Go to build web sites and applications?
11 projects | /r/golang | 4 Apr 2023

Now, I serve TLS directly from the application and was able to make it all work with Certmagic.
Building web-based SaaS with Go as a solo entrepreneur. What should I be aware of?
13 projects | /r/golang | 23 Jan 2023

For deployment, you may not need a reverse proxy with Nginx or the likes. Certmagic will make HTTPS a breeze. Also makes it possible to handle multi-tenant SaaS domains SSL provisioning. While not the easiest, it was much easier than trying to do it at the reverse proxy and cheaper than doing it with Cloudflare's SaaS service.
How do I deploy a Golang REST API on DigitalOcean as you do for production?
3 projects | /r/golang | 11 Oct 2022

If you don't want to move certificate management to a different service, use CertMagic in your app.
Hitless TLS Certificate Rotation in Go
1 project | /r/golang | 5 Jun 2022

With certmagic its done completly automatic using letsencrypt: https://github.com/caddyserver/certmagic
Show HN: A Full-Stack Web Framework Written in Go
18 projects | news.ycombinator.com | 13 May 2022
caddy v2.5.1 adds support for Authelia and other authentication providers
4 projects | /r/selfhosted | 9 May 2022

The project is also a boon for devs. The certmagic library0 makes it trivial to add Let's Encrypt support to any Golang web server code.
Show HN: Caddy v2.5.0
13 projects | news.ycombinator.com | 26 Apr 2022

Because Lego maintainers wouldn't budge when Caddy needed changes made to increase ACME reliability. Matt wrote his own implementation https://github.com/mholt/acmez and started using that in Caddy soon after. There's a deeper explanation here: https://github.com/caddyserver/certmagic/issues/71
Which web framework is more preferred or "industry standard" today?
3 projects | /r/golang | 17 Oct 2021

That said, I would use https://github.com/caddyserver/certmagic to manage you SSL certs.
Do you handle TLS/HTTPS termination in go code, or relly on another service (NGINX, Load Balancer, F5, Heroku, PaaS, etc)?
4 projects | /r/golang | 29 Sep 2021

I terminate SSL in GO (less moving parts to manage), and use https://github.com/caddyserver/certmagic to provision and renew my certs.

nacl

Posts with mentions or reviews of nacl. We have used some of these posts to build our list of alternatives and similar projects.

Ten years of experience, still failing phone screens
1 project | news.ycombinator.com | 11 Dec 2021

Your post ought to be ample proof that subjective opinions (like the one you display here) are not solid grounds for hiring decisions.
When looking at this person's github repo, I -unlike you- see a vast number of trivial projects that can best be described as regurgitations of other people's projects. Even worse, if you actually look at his first pinned project (https://github.com/kevinburke/nacl), you'll see that it is nothing but a wrapper with trivial changes/updates.
TL;DR I see a lot of projects that can provide the illusion of competence but, when actually inspected, telling me not to hire this person.

What are some alternatives?

When comparing certmagic and nacl you can also consider the following projects:

lego - Let's Encrypt/ACME client and library written in Go

bitwarden-go - A Bitwarden-compatible server written in Golang

Caddy - Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS

ACL - A simple but powerful Access Control List manager

go-acl - Go support for Access Control Lists

simple-scrypt - A convenience library for generating, comparing and inspecting password hashes using the scrypt KDF in Go 🔑

go-yara - Go bindings for YARA

Themis - Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.

passlib - :key: Idiotproof golang password validation library inspired by Python's passlib

Go random string generator - Flexible and customizable random string generator

certificates - An opinionated helper for generating tls certificates

goSecretBoxPassword - A probably paranoid Golang utility library for securely hashing and encrypting passwords based on the Dropbox method. This implementation uses Blake2b, Scrypt and XSalsa20-Poly1305 (via NaCl SecretBox) to create secure password hashes that are also encrypted using a master passphrase.