Let's Encrypt with Pivotal CWF

Let's Encrypt Stuff

  • Get the Cert
    • clone the Github repo
    • run ./letsencrypt-auto certonly --standalone -d example.com -d www.example.com
    • ensure your site responds to /.well-known/acme-challenge...
    • note: if you use multiple domains, you'll need to respond to each key. For rails, I have a route that responds conditionally to each key
    • find the .pem in /etc/letsencrypt/live/example.com/fullchain.pem
    • cat the .key text from etc/letsencrypt/keys/0001_key-letsencrypt.pem

Pivotal Cloud Foundry Stuff

DNS Stuff

  • update the CNAME of your webhost to point to the new SSL-enabled endpoint on PWS, example: www.example.com-abcd1234.ssl.run.pivotal.io


Comments

About Afomi

Afomi is the digital sandbox of Ryan Wold, who is always evolving this to better share inspirations and aspirations.

About Ryan

Ryan is a systems-thinking Product Developer and Designer who practices agile, test-driven, and lean continuous software delivery, while solving problems with people.