Skip to content

Draft: Let's Encrypt support for Pages

nobody requested to merge gitlab-community/omnibus-gitlab:issue-3342 into master

What does this MR do?

This MR hasn't been tested or validated yet. It tires to close #3342

Implementation plan

  1. add DNS authorization; the plan is to use DNS api key to do authorization and renewal - done
  2. try to find out a way to do DNS challenge by setting up own acme-dns instance. Bascially I was looking at this solution. It requires to create a CNAME for each of the DNS name and does the challenge in a sperate server. It helps those DNS servers which do not "provide an API to enable automation for the ACME DNS challenges". - todo
  3. use pebble to test and validate locally - doing. I have multiple errors refering to set up a local testing and validating. TT__TT
  4. validate with list of DNS providers - todo
  5. letsencrypt cookbook is still being used in the source code. Need to update to acme & test. Or find out why it is still being used. - todo
  6. if possible: figure out the possiblity to implement TLS-ALPN-01 - currently not implemented in acme cookbook
Edited by nobody

Merge request reports