Metadata-Version: 2.1
Name: acmens
Version: 0.1.1
Summary: A simple ACMEv2 client. Fork of acme-nosudo.
Home-page: https://github.com/r5d/acmens
Author: rsiddharth
Author-email: s@ricketyspace.net
License: GNU Affero General Public License v3
Description: # acmens
        
        A fork of [acme-nosudo][]. It uses ACMEv2 protocol and requires Python 3.
        
        [acme-nosudo]: https://github.com/diafygi/acme-nosudo
        
        `acmens` may be used for getting a new SSL certificate, renewing a SSL
        certificate for a domain, and revoking a certificate for a domain.
        
        It's meant to be run locally from your computer.
        
        ## prerequisites
        
        * openssl or libressl
        * python3
        * pip
        
        ## installation
        
        ```sh
        pip install acmens
        ```
        
        ## getting/renewing a certificate
        
        First, you need to generate an user account key for Let's Encrypt.
        This is the key that you use to register with Let's Encrypt. If you
        already have user account key with Let's Encrypt, you can skip this
        step.
        
        ```sh
        openssl genrsa -aes256 4096 > user.key
        openssl rsa -in user.key -pubout > user.pub
        ```
        
        Second, you need to generate the domain key and a certificate request.
        This is the key that you will get signed for free for your domain (replace
        "example.com" with the domain you own). If you already have a domain key
        and CSR for your domain, you can skip this step.
        
        ```sh
        # Generate domain key.
        openssl genrsa -aes256 -out domain.key 4096
        
        # Generate CSR
        openssl req -new -sha256 -key domain.key -out domain.csr
        ```
        
        Third, you run the script using python and passing in the path to your user
        account private key, email address, and the domain CSR. The paths can be
        relative or absolute.
        
        ```sh
        acmens --account-key user.key --email mail@example.com --csr domain.csr > signed.crt
        ```
        
        When you run the script, it will:
        
         - Register you with Let's Encrypt using the email address.
        
         - If the `user.key` is encrypted, openssl will ask for the passphrase every time
           the private key is used for signing requests or data.
        
         - Ask you to provision a HTTP resource on your web server for the domain for
           the ACME HTTP challenge.
        
         - Will write the certificate to `signed.crt` if ACME HTTP challenge is
           successful.
        
        ## revoking a certificate
        
        First, you will need to the user account key for Let's Encrypt that was used
        when the certificate was signed.
        
        Second, you will need the PEM encoded signed certificate that was produced by
        `acmens`.
        
        Third, you run the script using python and passing in the path to your user
        account key and the signed domain certificate. The paths can be relative or
        absolute.
        
        ```sh
        acmens --revoke -k user.key --crt domain.crt
        ```
        
Keywords: acme letsencrypt acmens
Platform: UNKNOWN
Classifier: Development Status :: 2 - Pre-Alpha
Classifier: Environment :: Console
Classifier: Intended Audience :: Developers
Classifier: Intended Audience :: End Users/Desktop
Classifier: License :: OSI Approved :: GNU Affero General Public License v3
Classifier: Operating System :: POSIX :: BSD
Classifier: Operating System :: POSIX :: Linux
Classifier: Operating System :: MacOS
Classifier: Programming Language :: Python :: 3 :: Only
Classifier: Topic :: System :: Systems Administration
Classifier: Topic :: Utilities
Requires-Python: >=3
Description-Content-Type: text/markdown
