ACME

Configuration for the ACME automated TLS certificate resolver.

Example:

acme:
  email: foo@example.com
  domains:
  - example.com

`email` string

acme:
  email: foo@example.com

Email address for ACME account registration.

Type: String

`domains` list

acme:
  domains:
  - example.com

Domains to obtain certificates for.

Type: List of strings

`ca_server` string

acme:
  ca_server: staging

Default: production

ACME CA server URL.

Options:

production: LetsEncrypt production server (https://acme-v02.api.letsencrypt.org/directory)
staging: LetsEncrypt staging server (https://acme-staging-v02.api.letsencrypt.org/directory)
Custom URL

`http_port` integer

acme:
  http_port: 6080

Default: 8402

Port for the ACME HTTP-01 challenge server, which listens on 127.0.0.1. Varnish routes /.well-known/acme-challenge/ requests to this port, so the challenge server no longer binds to port 80 directly. The server is only started when domains are configured.

`renew_before_days` integer

acme:
  renew_before_days: `15`

Default: 30

Days before expiry to renew certificates.

`fetch_timeout_sec` integer

acme:
  fetch_timeout_sec: 150

Default: 300

Timeout for initial certificate fetching.

ACME

email string#

domains list#

ca_server string#

http_port integer#

renew_before_days integer#

fetch_timeout_sec integer#