Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum

Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. Feature Requests
  3. Option to generate and download certificates

Option to generate and download certificates

Scheduled Pinned Locked Moved Feature Requests
20 Posts 6 Posters 2.9k Views 6 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • adisonA Offline
    adisonA Offline
    adison
    wrote on last edited by girish
    #1

    hello.
    i would like a new application to be added, some kind of web version of certbot.
    this would allow people to generate SSL certificates for their domains using LetsEncrypt.
    thanks
    adisonVerlice

    my website is not available right now

    1 Reply Last reply
    0
    • jdaviescoatesJ Offline
      jdaviescoatesJ Offline
      jdaviescoates
      wrote on last edited by
      #2

      Um, Cloudron already does exactly that for all domains you add.

      Or is it that you'd like to be able to easily do it for domain you don't add to Cloudron or something? šŸ¤”

      I use Cloudron with Gandi & Hetzner

      1 Reply Last reply
      0
      • adisonA Offline
        adisonA Offline
        adison
        wrote on last edited by
        #3

        im' talking about the dmainsi don't have. and another problem with cloudron is it doesn't give you like the pem or the certificate, in case you want to use it with another server that cant be added to cloudron for whatever reason.
        also, i know that PFSense was able to accomplish this task, of giving domains certificates, so cloudron should be able to as well

        my website is not available right now

        BrutalBirdieB 1 Reply Last reply
        0
        • adisonA adison

          im' talking about the dmainsi don't have. and another problem with cloudron is it doesn't give you like the pem or the certificate, in case you want to use it with another server that cant be added to cloudron for whatever reason.
          also, i know that PFSense was able to accomplish this task, of giving domains certificates, so cloudron should be able to as well

          BrutalBirdieB Offline
          BrutalBirdieB Offline
          BrutalBirdie
          Partner
          wrote on last edited by
          #4

          @adison said in app request:

          another problem with cloudron is it doesn't give you like the pem or the certificate

          Cloudron gives you all certs in /home/yellowtent/platformdata/nginx/cert/ you can use them for something else.

          @adison said in app request:

          in case you want to use it with another server that cant be added to cloudron for whatever reason.

          This sentence confuses me a lot.
          Do you want to use your own cert with Cloudron?
          That feature exists, when setting up or editing a domain in Advanced settings… you can upload your own cert and key.

          Are you looking for a central cert management toll?
          I am a bit confused by all this.
          Also instead of certbot maybe look at acme.sh and acmemgr.sh

          If could clarify your use case a little more and help me understand I might be able to give better reply.

          Like my work? Consider donating a drink. Cheers!

          1 Reply Last reply
          3
          • nebulonN Offline
            nebulonN Offline
            nebulon
            Staff
            wrote on last edited by
            #5

            @adison not sure if this is applicable for you, but you could also add an application proxy within Cloudron for external applications, not hosted on Cloudron itself. This would take care of domain setup and certificates just like for other Cloudron apps.

            1 Reply Last reply
            1
            • adisonA Offline
              adisonA Offline
              adison
              wrote on last edited by
              #6

              my usecase is that i want to generate certificates, but unfortunately it takes a long time on the normal command line. wile it is true cloudron can do it, the main problem is that it cant generate certificates that cannot use cloudron, in other words, certificates you can use outside of cloudron. and as for app proxies, i don't know how to do that. but my point is, it would be nice to have some kind of acme application that can generate certificates for you without having to use the command line.

              my website is not available right now

              1 Reply Last reply
              0
              • girishG girish moved this topic from App Wishlist on
              • timconsidineT Online
                timconsidineT Online
                timconsidine
                App Dev
                wrote on last edited by timconsidine
                #7

                I'm also confused.
                I thought the certificate is based on the domain, so if the app is elsewhere, how does doing it on Cloudron help, unless there is some proxy process.
                Cloudron system is for managing apps on Cloudron, should it really be extended to managing external apps ?
                But maybe there's a clever app which could do this.
                Happy to be educated, but at this point I don't understand the use case clearly, or how it could be implemented.

                1 Reply Last reply
                2
                • adisonA Offline
                  adisonA Offline
                  adison
                  wrote on last edited by
                  #8

                  pretty sure there is, as PFSense accpomplished it using an acme package and LetsEncrypt

                  my website is not available right now

                  1 Reply Last reply
                  0
                  • girishG Offline
                    girishG Offline
                    girish
                    Staff
                    wrote on last edited by
                    #9

                    @adison App Proxy is essentially what I think you want. Please see https://docs.cloudron.io/apps/#app-proxy . With App Proxy, Cloudron manages the certs entirely . Let's Encrypt certs are only valid for 3 months and on Cloudron it's renewed every 2 months, so this is quite a pain for you to remember this every 2 months to manually download cert and install it somewhere else. With App Proxy, Cloudron will maintain the cert entirely.

                    1 Reply Last reply
                    2
                    • adisonA Offline
                      adisonA Offline
                      adison
                      wrote on last edited by
                      #10

                      hmmmm, interesting...

                      my website is not available right now

                      1 Reply Last reply
                      0
                      • adisonA Offline
                        adisonA Offline
                        adison
                        wrote on last edited by
                        #11

                        i'm trying that, but it just keeps saying "starting" and not starting

                        my website is not available right now

                        1 Reply Last reply
                        0
                        • adisonA Offline
                          adisonA Offline
                          adison
                          wrote on last edited by
                          #12

                          it doesnt show any errors in the event log, it just shows it was installed

                          my website is not available right now

                          1 Reply Last reply
                          0
                          • nebulonN Offline
                            nebulonN Offline
                            nebulon
                            Staff
                            wrote on last edited by
                            #13

                            Whats the upstream URI you have provided if this is ok to share publicly here?

                            1 Reply Last reply
                            0
                            • adisonA Offline
                              adisonA Offline
                              adison
                              wrote on last edited by
                              #14

                              its fine, its blocked to the public anyway and requires IP port WhiteListing. https://3.224.106.140:443

                              my website is not available right now

                              girishG 1 Reply Last reply
                              0
                              • adisonA adison

                                its fine, its blocked to the public anyway and requires IP port WhiteListing. https://3.224.106.140:443

                                girishG Offline
                                girishG Offline
                                girish
                                Staff
                                wrote on last edited by girish
                                #15

                                @adison Can you try if curl -k https://3.224.106.140:443 works from Cloudron server?

                                The logs should be improved , agreed...

                                1 Reply Last reply
                                0
                                • adisonA Offline
                                  adisonA Offline
                                  adison
                                  wrote on last edited by
                                  #16

                                  @jdaviescoates i just tryed that, it says empty reply

                                  my website is not available right now

                                  1 Reply Last reply
                                  0
                                  • adisonA Offline
                                    adisonA Offline
                                    adison
                                    wrote on last edited by
                                    #17

                                    ok wrong person, i ment to ping @girish

                                    my website is not available right now

                                    1 Reply Last reply
                                    0
                                    • adisonA Offline
                                      adisonA Offline
                                      adison
                                      wrote on last edited by
                                      #18

                                      i ran it with the k flag and it returns absolutely nothing...

                                      my website is not available right now

                                      girishG 1 Reply Last reply
                                      0
                                      • adisonA adison

                                        i ran it with the k flag and it returns absolutely nothing...

                                        girishG Offline
                                        girishG Offline
                                        girish
                                        Staff
                                        wrote on last edited by
                                        #19

                                        @adison right. So, that is what the proxy sees as well. Something is wrong with the upstream app . You can pass "-v" to curl for verbose output, maybe something in the output helps.

                                        1 Reply Last reply
                                        0
                                        • adisonA Offline
                                          adisonA Offline
                                          adison
                                          wrote on last edited by
                                          #20

                                          @girish there are no errors, just an empty reply.
                                          though when i put "https" in front of it, it says certificate error, cant get local certificate issuer

                                          my website is not available right now

                                          1 Reply Last reply
                                          0
                                          Reply
                                          • Reply as topic
                                          Log in to reply
                                          • Oldest to Newest
                                          • Newest to Oldest
                                          • Most Votes


                                          • Login

                                          • Don't have an account? Register

                                          • Login or register to search.
                                          • First post
                                            Last post
                                          0
                                          • Categories
                                          • Recent
                                          • Tags
                                          • Popular
                                          • Bookmarks
                                          • Search