sjkp/letsencrypt-azure sjkp/letsencrypt-azure

  • Stars
    star
    109
  • Rank 319,077 (Top 7 %)
  • Language
    C#
  • Created about 8 years ago
  • Updated 8 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
sjkp/letsencrypt-azure
github

sjkp

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

The easiest way to use lets encrypt certificates on Azure

Let's Encrypt Azure

Build status

The easiest and most robust method for deploying Let's Encrypt Wild Card Certificate to Azure Web Apps.

Getting Started

Azure DNS + Azure Web

Deployment template for setting up Let's Encrypt wild card certificate for Azure Web App (hosting plan and web app must be colocated in same resource group). Hostname must already be configured on the Web App and the DNS must be setup in Azure.

What is Let's Encrypt Azure

Let's Encrypt Azure is my second attempt to bring support for Let's Encrypt certificates on Azure. It is the spiritual successor to the Let's Encrypt Site-Extension, although they for the momemt support different usage scenarios.

Feature Let's Encrypt Azure Let's Encrypt Site-Extension
Key Vault Support X Not supported
Wild card SSL certificate support / DNS challenge X Not supported
Specific domain SSL certificate support / HTTP challenge Planned X
Managed Service Identity Authenticaiton X Not supported
Azure Web Apps X X
Azure CDN Planned Not supported
Azure Application Gateway Planned Not supported
Azure Front Door Planned Not supported
Web App behind Traffic Manager supported X X

How it works

Let's Encrypt Azure, works by deploying a resouce group with an Azure Function that runs code that talks to Let's Encrypt to request and renew the certificate, using the DNS challenge. Since DNS challenge is used the Function app needs access to the DNS provider used for the domain. All secrets required for the process are stored in Azure Key Vault. Once a certificate is generated it can be stored a various certificate storage locations and consumed by different certificate consumers. It used application insights for storing logs.

Overview of infrastructure

Certificate Storage

The recommend certificate storage location is Azure Key Vault, but is is possible to configure the Azure Function to store the certificate in Azure Blob Storage as well.

Certificate Consumers

Certificate consumers are the Azure Service that is going to consume the certificate. Right now the only supported consumer is Azure Web Apps, but more are planned for the future.

  • Azure Web Apps/Azure Functions
  • Azure Front Door (not released)
  • Azure Application Gateway (not released)
  • Azure CDN (not released)

DNS providers

DNS providers are where the DNS for the domain name is configured. Currently the following DNS providers are supported

  • Azure DNS
  • GoDaddy DNS
  • UnoEuro DNS

More Repositories

1

letsencrypt-siteextension

Azure Web App Site Extension for easy installation and configuration of Let's Encrypt issued SSL certifcates for custom domain names.
C#
744
star
2

azure-localhost-tunnel

JavaScript
23
star
3

heatmap

The PowerBI Heatmap Visual enables users to draw a heatmap overlay from a X, Y coordinate set on to an existing image. The user specify the image, and provide a data set of X, Y coordinates and optionally an intensity for each data point. The radius and the bluriness of the heatmap bubbles can be customized as well as the max value for the intensity.
TypeScript
20
star
4

UrlShortener

A Url Shortener service build with Azure Functions in less than 100 lines of code
C#
17
star
5

Azure.ARM.ServiceBus

Example of deploying service bus with ARM templates
PowerShell
8
star
6

sjkp.livechatmsteams

Live customer support chat control for your web sites, that uses Microsoft Teams as the backend admin interface
6
star
7

Azure.ARM.LinuxWebApp.Docker

Azure Resource Manager template for deploying an Linux Azure Web App with a Docker container (nginx)
PowerShell
4
star
8

azure-arm-hol

Hands-on labs for Azure Resource Manager.
Batchfile
4
star
9

requestbininazure

4
star
10

Azure.ARM.LinuxWebApp.Docker.PhantomJS

ARM template for running Docker container hosting PhantomJS in Azure Web App
PowerShell
3
star
11

Delegate.SPA.Template

A Visual Studio Template for creating single page applications
C#
3
star
12

azure-arm-aci-minecraft-server

3
star
13

Azure.ARM.EventHub

Example template for provisioning an Azure EventHub with Azure Resource Manager template
PowerShell
3
star
14

AzureFileSync

Synchronize a onpremise directory with the Azure File Service, that can be mounted in VMs in the cloud.
F#
3
star
15

azure-container-instances-sample

C#
2
star
16

Microsoft-teams-docs

Developer platform documentation for Microsoft Teams
PowerShell
2
star
17

yammer.downloader

Simple console app that can be used to download all data from Yammer (as a user)
C#
2
star
18

azure-gallery-templates

Azure Gallery Templates downloaded with Get-AzureResourceGroupGalleryTemplate on the 30-08-2015
2
star
19

SJKP.KeyVault

Example project on how to gain a secret from Azure Key Vault from an Azure Web Job using certificate authentication
C#
2
star
20

node-red-docker-azurewebapp

2
star
21

sjkp-sharepoint-app-ts

SharePoint SPA App written in TypeScript
TypeScript
2
star
22

proffdkscraper

A node.js express application that scrapes proff.dk for company information and exposes it as rest services.
JavaScript
2
star
23

azure-arm-static-webpage

Shell
2
star
24

powerbi-cors-app-ts

This is a sample application that shows how to use AngularJS, TypeScript and the ADAL.js to display tiles from PowerBI in a single page web application.
TypeScript
2
star
25

docker-workshop

C#
2
star
26

SJKP.AzureSearch.PdfIndexer

Example showing how Azure WebJob can be used with the new Azure.Search API to index PDF documents
C#
2
star
27

azure-arm-multiregion-website-template

Azure Resource Manager template, that can provision a storage account, multiple azure websites in different regions with an appsetting pointing to the storage account and with application insights.
PowerShell
1
star
28

ODataConverter

C#
1
star
29

outlook-addin-installer

JavaScript
1
star
30

onelogin-oauth-angular2-webapi

TypeScript
1
star
31

Oyster.LoRaWAN

C#
1
star
32

Azure.ARM.CustomHostnameFunction

Custom hostname for Azure Function using Azure Web App as a reverse proxy
PowerShell
1
star
33

LightSwitchCRMOnlineDemo

Demo project showing how to connect a LightSwitch application to CRM online data.
JavaScript
1
star
34

deno-azd-template

Template for creating a Deno application in Azure Container Apps using the Azure Developer CLI
Bicep
1
star
35

marinemap

PowerBI Custom visual for showing marine traffic
TypeScript
1
star
36

flightradar24

C#
1
star
37

Azure.ARM.Ubuntu-Simple-Docker

Simple VM for running docker on ubuntu, with scheduled shutdown
1
star
38

Azure.ARM.Dashboards

Azure Resource Manager template that deploys dashboards to the ibiza portal
1
star
39

devopsai

C#
1
star
40

Bosch.ParkingLotSensor

C#
1
star
41

SharePointPagesInDocumentLibrary

Chrome extension that counts the number of pages in all documents in a document library.
JavaScript
1
star
42

webapitutorial

This is a simple sample project, that show what you need to add Cors support to WebAPI.
C#
1
star
43

SJKP.OutlookAppointmentPlanner

Outlook App written in TypeScript/C# that allow appointment scheduling like known from doodle
JavaScript
1
star