|Andreas Peters 8e03fe31e2 Change to official certbot image||1 week ago|
|test||2 years ago|
|.gitignore||1 week ago|
|Dockerfile||1 week ago|
|README.md||1 year ago|
|letsencrypt-dcos.json||2 years ago|
|post_cert.py||2 years ago|
|run.sh||2 years ago|
Clone (or manually copy) this repo, and modify the letsencrypt-dcos.json file to include:
Now launch the
letsencrypt-dcos Marathon app:
$ dcos marathon app add letsencrypt-dcos.json
There are 2 test apps included, based on openresty, which you can use to test everything. Have a look in the
test/ directory within the repo.
The app includes 2 scripts:
post_cert.py. The first script (
run.sh) will generate the initial SSL cert and POST the cert to Marathon for Marathon-lb. It will then attempt to renew & update the cert every 24 hours. The
post_cert.py script will compare the current cert in Marathon to the current live cert, and update it as necessary.
post_cert.py is called after the initial cert is generated, and again every 24 hours after a renewal attempt.
A persistent volume called
data is mounted inside the container at
/etc/letsencrypt which contains the certificates and other generated state.