Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 7 Go tls-certificate Projects
-
acme-dns
Limited DNS server with RESTful HTTP API to handle ACME DNS challenges easily and securely.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
Project mention: Show HN: Clace – Platform for secure internal web applications | news.ycombinator.com | 2023-10-18
Project mention: Subdomain.center – discover all subdomains for a domain | news.ycombinator.com | 2023-09-15Getting a wildcard certificate from LE might be a better option, depending on how easy the extra bit of if plumbing is with your lab setup.
You need to use DNS based domain identification, and once you have a cert distribute it to all your services. The former can be automated using various common tools (look at https://github.com/joohoi/acme-dns, self-hosted unless you are only securing toys you don't really care about, if you self host DNS or your registrar doesn't have useful API access) or you can leave that as an every ~ten weeks manual job, the latter involves scripts to update you various services when a new certificate is available (either pushing from where you receive the certificate or picking up from elsewhere). I have a little VM that holds the couple of wildcard certificates (renewing them via DNS01 and acmedns on a separate machine so this one is impossible to see from the outside world), it pushes the new key and certificate out to other hosts (simple SSH to copy over then restart nginx/Apache/other).
Of course you may decide that the shin if your own CA is easier than setting all this up, as you can sign long lived certificates for yourself. I prefer this because I don't need to switch to something else if I decide to give friends/others access to something.
Go tls-certificate related posts
- Setting up ssl on AGH
- Sanic v22.6 Released - Includes HTTP/3
- Hands-free SSL certificate generation from a CA
- Best DNS Registrar for home lab
- Strategies for reliable automatic renewals with minimal disruption
- LetsEncrypt-compatible dynamic DNS provider?
- Announce: easy setup of a modern XMPP server
-
A note from our sponsor - InfluxDB
www.influxdata.com | 26 Apr 2024
Index
What are some of the best open-source tls-certificate projects in Go? This list will help you:
Project | Stars | |
---|---|---|
1 | certmagic | 4,812 |
2 | acme-dns | 1,960 |
3 | gke-managed-certs | 244 |
4 | certinfo | 218 |
5 | crlite | 59 |
6 | sslmgr | 25 |
7 | pkisauce | 6 |
Sponsored