It takes a CSR and user public key as input. Then, it prints the signing commands you need to run (so it doesn't have to know your private keys). Then, prints the command you need to run on your server. Finally, it prints your signed cert. Enjoy!
The official Let's Encrypt client is aimed at an audience that doesn't know what a CSR is. For those that do and just want their free certs, I wrote this script to them to get their free certs without having to trust any client.
Thank you for writing this alternative program and quickly responding to help in the issue tracker. This program's workflow feels much more pleasant for an admin who knows how TLS works.
Is it possible to serve a text file on the existing server rather then taking it down for the python web server?
Sweet! The part where you generate the code to run the HTTP server... can that also be done by generating a file which you copy to the existing server's root directory?
Wow, ACME protocol seems way over-designed for what was actually required.
https://github.com/diafygi/letsencrypt-nosudo
It takes a CSR and user public key as input. Then, it prints the signing commands you need to run (so it doesn't have to know your private keys). Then, prints the command you need to run on your server. Finally, it prints your signed cert. Enjoy!
The official Let's Encrypt client is aimed at an audience that doesn't know what a CSR is. For those that do and just want their free certs, I wrote this script to them to get their free certs without having to trust any client.