starred/acme-dns

Fork 0

mirror of https://github.com/acme-dns/acme-dns.git synced 2026-04-27 04:45:48 +03:00

[GH-ISSUE #59] Client implementations #21

New issue

Open

opened 2026-03-13 15:23:23 +03:00 by kerem · 7 comments

kerem commented

2026-03-13 15:23:23 +03:00

Owner

Originally created by @joohoi on GitHub (Mar 18, 2018).
Original GitHub issue: https://github.com/acme-dns/acme-dns/issues/59

Acme-dns needs client implementations for clients in order to be useful. If you have written a client implementation, please let me know, and I'll add a link to it to the README.md for people to find and use.

Currently the only publicly available client implementation that I know of is a Certbot authentication hook that can be found at: https://github.com/joohoi/acme-dns-certbot . This can be used as a reference for ways to handle the credential storage and communication towards acme-dns instance.

Originally created by @joohoi on GitHub (Mar 18, 2018). Original GitHub issue: https://github.com/acme-dns/acme-dns/issues/59 Acme-dns needs client implementations for clients in order to be useful. If you have written a client implementation, please let me know, and I'll add a link to it to the `README.md` for people to find and use. Currently the only publicly available client implementation that I know of is a Certbot authentication hook that can be found at: [https://github.com/joohoi/acme-dns-certbot](https://github.com/joohoi/acme-dns-certbot) . This can be used as a reference for ways to handle the credential storage and communication towards acme-dns instance.

kerem added the

feature request

help wanted

labels

2026-03-13 15:23:23 +03:00

kerem commented

2026-03-13 15:23:34 +03:00

Author

Owner

@MrBMT commented on GitHub (Mar 20, 2018):

I didn't make it, but there's also another Certbot hook written in Go: https://github.com/koesie10/acme-dns-certbot-hook

I found and used this to generate my first LE Wildcard certs, as it was before you'd created your hook.

@MrBMT commented on GitHub (Mar 20, 2018): I didn't make it, but there's also another Certbot hook written in Go: https://github.com/koesie10/acme-dns-certbot-hook I found and used this to generate my first LE Wildcard certs, as it was before you'd created your hook.

kerem commented

2026-03-13 15:23:39 +03:00

Author

Owner

@joohoi commented on GitHub (Mar 20, 2018):

~~Thanks! I'll add it to the list.~~
Done.

@joohoi commented on GitHub (Mar 20, 2018): ~Thanks! I'll add it to the list.~ Done.

kerem commented

2026-03-13 15:23:44 +03:00

Author

Owner

@danb35 commented on GitHub (Apr 7, 2018):

acme.sh appears to work with acme-dns; its instructions are near the bottom of the page at https://github.com/Neilpang/acme.sh/blob/master/dnsapi/README.md.

@danb35 commented on GitHub (Apr 7, 2018): acme.sh appears to work with acme-dns; its instructions are near the bottom of the page at https://github.com/Neilpang/acme.sh/blob/master/dnsapi/README.md.

kerem commented

2026-03-13 15:23:50 +03:00

Author

Owner

@joohoi commented on GitHub (Apr 8, 2018):

Awesome news! I'll add a link to the docs.

@joohoi commented on GitHub (Apr 8, 2018): Awesome news! I'll add a link to the docs.

kerem commented

2026-03-13 15:23:55 +03:00

Author

Owner

@Ajedi32 commented on GitHub (May 15, 2018):

Not sure if this counts as a separate client or not, but pfSense supports it via the ACME plugin's integration with ACME.sh:

@Ajedi32 commented on GitHub (May 15, 2018): Not sure if this counts as a separate client or not, but pfSense supports it via the ACME plugin's integration with ACME.sh: ![image](https://user-images.githubusercontent.com/1876931/40034580-29fa3740-57c3-11e8-9f2d-e24b1d37a841.png)

kerem commented

2026-03-13 15:24:00 +03:00

Author

Owner

@joohoi commented on GitHub (May 15, 2018):

pfSense supports it via the ACME plugin's integration with ACME.sh

This is cool! Could probably list it under a section of "Other" or similar.

In general though, I feel that the acme.sh client implementation is somewhat lacking, as it expects a single set of acme-dns credentials for the entire certificate instead of credentials per domain. This approach has caveats that we went into detail in discussion here.

This isn't an issue in typical pfSense installation, but I hope it would get fixed in acme.sh, although the acme.sh architecture might make it hard. acme-dns is a different beast than typical DNS APIs.

@joohoi commented on GitHub (May 15, 2018): > pfSense supports it via the ACME plugin's integration with ACME.sh This is cool! Could probably list it under a section of "Other" or similar. In general though, I feel that the acme.sh client implementation is somewhat lacking, as it expects a single set of acme-dns credentials for the entire certificate instead of credentials per domain. This approach has caveats that we went into detail in discussion [here](https://github.com/joohoi/acme-dns/issues/76). This isn't an issue in typical pfSense installation, but I hope it would get fixed in acme.sh, although the acme.sh architecture might make it hard. acme-dns is a different beast than typical DNS APIs.

kerem commented

2026-03-13 15:24:05 +03:00

Author

Owner

@viralpoetry commented on GitHub (Mar 10, 2020):

Hi,
there is now also ACME-DNS DNS Authenticator plugin for Certbot
https://github.com/pan-net-security/certbot-dns-acmedns

@viralpoetry commented on GitHub (Mar 10, 2020): Hi, there is now also ACME-DNS DNS Authenticator plugin for Certbot https://github.com/pan-net-security/certbot-dns-acmedns

kerem referenced this issue

2026-03-13 16:13:35 +03:00

[PR #21] [MERGED] Removed unnecessary body check #250