-
Notifications
You must be signed in to change notification settings - Fork 21
SSL Lets Encrypt
Matt Harley edited this page Sep 28, 2016
·
4 revisions
We are using Let's Encrypt for all of our free SSL needs.
# Run certbot-auto
./certbot-auto certonly --manual -d www.pdpdmeetup.com
# It will provide you with something like this:
# mkdir -p /tmp/certbot/public_html/.well-known/acme-challenge
# cd /tmp/certbot/public_html
# printf "%s" qK36hUj09uX6GeARMsKWKxTbrzdPl8QBbDhPFTrV1WA.k-xVmsE7cZ-Wwg6qxk25eUm0VvB44qhKruWYJOr_mjc > .well-known/acme-# challenge/qK36hUj09uX6GeARMsKWKxTbrzdPl8QBbDhPFTrV1WA
# Update pdpdmeetup/templates/ssl.html to this:
qK36hUj09uX6GeARMsKWKxTbrzdPl8QBbDhPFTrV1WA.k-xVmsE7cZ-Wwg6qxk25eUm0VvB44qhKruWYJOr_mjc
# Update pdpdmeetup/urls.py to this:
# url(
# r'^\.well-known/acme-challenge/qK36hUj09uX6GeARMsKWKxTbrzdPl8QBbDhPFTrV1WA',
# TemplateView.as_view(template_name="ssl.html")
# )
# Commit the new code and push to heroku
git push heroku master
# Once this has finished, Press ENTER to continue on the certbot-auto terminal
# You'll have the new certificate saved to: /etc/letsencrypt/live/pdpdmeetup.com/fullchain.pem
# Update certs on Heroku
sudo heroku certs:update /etc/letsencrypt/live/www.pdpdmeetup.com/fullchain.pem /etc/letsencrypt/live/wwwpdpdmeetup.com/privkey.pem
# You should get a message: SSL certificate is verified by a root authority.
# Go to https://www.pdpdmeetup.com/ and check out your shiny new cert!