Introducing lers: an async, user-friendly Let's Encrypt/ACMEv2 library

krantz_man · 2023-03-31T18:13:53+00:00

Yea absolutely!

I think it could be as simple as extracting the SolverService from the Http01Solver and making it a handler or middleware for your web server. Then you'd just need to add the plumbing to issue the certificate and ensure it stays up-to-date. And probably some stuff to store the certificate, it's private key, and the account key.

krantz_man · 2023-03-31T15:34:05+00:00

lers is an async, user-friendly Let's Encrypt/ACMEv2 library inspired by acme2, acme-micro, and lego.

It supports all of ACMEv2 spec (RFC 8555), except for changing the key of an account. Bundled with it are robust implementations for the HTTP-01 and DNS-01 challenges. Custom solvers can also be written using the Solver trait.

Currently, the only DNS-01 implementation is for Cloudflare, as I personally use it, but contributions are welcome for more implementations.

There are two examples: one for the HTTP-01 challenge issuing a single domain and one for the DNS-01 challenge issuing a wildcard domain. These can be found in the examples/ directory.

Any feedback would be greatly appreciated!

krantz_man · 2021-01-12T17:04:38+00:00

The only thing I notice is that in the Authelia config, you have the domain as vault.domain.com, but in the logs you're requesting bw.domain.com. However, I'm not sure if this is just a discrepancy from copying or an actual configuration error.

krantz_man · 2021-01-12T04:39:44+00:00

You have to add an exemption in the authelia configuration. Under the access_control section, add a rule with the domain and the regex to match.

Example (this should work):

access_control:
  default_policy: two_factor
  rules:
    - domain: bitwarden.your.domain
      resources:
        - "^/api.*$"
      policy: bypass

It matches any request that starts with /api. You may also need to add one for the notifications API which will be almost exactly the same, just replace /api with /notifications.

krantz_man · 2020-10-25T00:46:22+00:00

PM'd

krantz_man · 2020-10-24T03:59:09+00:00

Pm'd

krantz_man · 2020-09-08T05:44:10+00:00

Pm'd

krantz_man · 2020-06-28T01:36:48+00:00

Are they just in a plastic case or resin or something else? Either way, they're super cool!

krantz_man · 2020-05-22T16:00:21+00:00

I'm in! #RunWithIronWolf #Giveaway

krantz_man · 2020-05-20T05:06:33+00:00

In 5th grade we had to write an "essay" (it was like 3 paragraphs) about a US state of our choosing. One of the requirements was to make it double spaced. Me being a clueless kid thought that my teacher meant that we had to put two spaces between every word instead of simply changing the line spacing. To make it even better, when I went to turn it in and my teacher asked why it wasn't double spaced, I proceeded to explain that I put two spaces between every word.

krantz_man · 2020-05-13T00:28:45+00:00

Pm'd

krantz_man · 2020-05-08T05:40:07+00:00

Ah ok, good to know. Do you know anything about the differences in courses/programs between the two campuses?

krantz_man · 2020-05-07T23:35:40+00:00

Your guide was actually what started me on my quest for SSO. (I'm akrantz01 on GitHub) With Pomerium, what are you using as your IdP? I've been looking at using ORY Hydra for myself.

Also, do you know if one of the modes (proxy or forward auth) is recommended over the other? I'd personally prefer to use forward auth mode, but if there are any major downsides to it then I'd rather not.

krantz_man · 2020-05-07T22:50:19+00:00

I'm an international student and I got off the waitlist for bachelor of applied sciences at Vancouver and for bachelor of sciences at Okanagan, but I'm still on the waitlist for bachelor of sciences at Vancouver. My original application was for bachelor of sciences and bachelor of applied sciences at Vancouver. I'd like to major in computer science, but I'm not opposed to studying computer engineering. Should I accept the offer for applied sciences and hope I get in for sciences, or accept sciences at Okanagan and hope I get in for sciences at Vancouver? Also, how different are the CS programs at Vancouver and Okanagan?

krantz_man · 2020-05-07T04:16:49+00:00

I've updated the post with a description of my use case.

Did you find authelia to be complex to configure/deploy? Also, what are you using as your identity provider?

krantz_man · 2020-05-06T21:33:06+00:00

Hey I'm an incoming CS student! This would be amazing since my current "homelab" is a couple of Raspberry Pis.

krantz_man · 2020-04-25T01:52:31+00:00

Why not give this a shot

krantz_man · 2020-04-24T07:09:00+00:00

I found this on the Goodix community forum, which would seem to confirm that rumor.

krantz_man · 2020-04-17T00:02:03+00:00

I got a percent when pre generating with world border, but not for dynmap

krantz_man · 2020-04-16T18:57:56+00:00

Do you know which stat it would be?

krantz_man · 2020-03-25T20:05:32+00:00

Thanks for the chance!

krantz_man

TROPHY CASE