[GH-ISSUE #1181] [Feature Request] Virtual Domain SSL Cert #965

New issue

Closed

opened 2026-02-27 11:14:30 +03:00 by kerem · 2 comments

kerem commented

2026-02-27 11:14:30 +03:00

Owner

Originally created by @jaketame on GitHub (Jul 10, 2017).
Original GitHub issue: https://github.com/modoboa/modoboa/issues/1181

Impacted versions

Modoboa: All
installer used: Yes
Webserver: Nginx

Current behavior

Currently only top level domain certificate is generated, will cause issues with domains that want to hide the orginal mail server name, such as mail.primary.uk, mail.client1.uk

Expected behavior

On domain creation within gui, option to enable SSL for the domain, automatic letsencrypt certificate generation (Multi-Domain SAN) and restart of services.

Potential Implementation

https://github.com/mail-in-a-box/free_tls_certificates

Originally created by @jaketame on GitHub (Jul 10, 2017). Original GitHub issue: https://github.com/modoboa/modoboa/issues/1181 # Impacted versions * Modoboa: All * installer used: Yes * Webserver: Nginx # Current behavior - Currently only top level domain certificate is generated, will cause issues with domains that want to hide the orginal mail server name, such as mail.primary.uk, mail.client1.uk # Expected behavior - On domain creation within gui, option to enable SSL for the domain, automatic letsencrypt certificate generation (Multi-Domain SAN) and restart of services. # Potential Implementation https://github.com/mail-in-a-box/free_tls_certificates

kerem

2026-02-27 11:14:30 +03:00

closed this issue
added the
feedback-needed
label

kerem commented

2026-02-27 11:14:30 +03:00

Author

Owner

@jaketame commented on GitHub (Jul 11, 2017):

IDEA:

Possibility to use the free_tls_certificates as a python plugin, store the ssl domains in db table

Admin interface to create/update with option to enable SSL for domain such as mail.new.com
Update domains sql table
Trigger issue.certificate via driver.py plugin, will detect new domain from db table and issue new cert, first domain will be primary domain on cert with others as additional domains (SAN)
Restart mail services.

HTTP access for .acme-challenege only everything else redirected to HTTPS.

Thoughts?

@jaketame commented on GitHub (Jul 11, 2017): IDEA: Possibility to use the free_tls_certificates as a python plugin, store the ssl domains in db table 1) Admin interface to create/update with option to enable SSL for domain such as mail.new.com 2) Update domains sql table 3) Trigger issue.certificate via driver.py plugin, will detect new domain from db table and issue new cert, first domain will be primary domain on cert with others as additional domains (SAN) 4) Restart mail services. HTTP access for .acme-challenege only everything else redirected to HTTPS. Thoughts?

kerem commented

2026-02-27 11:14:30 +03:00

Author

Owner

@kryskool commented on GitHub (Apr 7, 2018):

This issue was moved to modoboa/modoboa-installer#199

@kryskool commented on GitHub (Apr 7, 2018): This issue was moved to modoboa/modoboa-installer#199