Docker image based on acme-tiny and docker-gen.

See docker-compose.yml for an usage example.

The used nginx.tmpl is based on nginx-proxy.

docker run --rm \
    -v /var/run/docker.sock:/var/run/docker.sock \
    -v /srv/acme_config/:/acme/config/ \
    -v /srv/nginx/crt/:/acme/crt/ \
    -v /srv/nginx/www/.well-known/acme-challenge/:/acme/acme_challenge/ \
    bboehmke/docker-acme

Note: if no account.key exist in /acme/config/ a new one is created.

Use the environment variable CERT_TEST=domainA,domainB to create a certificate test.crt for all domainA and domainB.

Add the environment variables VIRTUAL_HOST, CERT_NAME and AUTO_CERT to a docker container.

• VIRTUAL_HOST: List of domains
• CERT_NAME: Name of certificate
• CERT_NOTIFY: true to enable notification of the current container
• AUTO_CERT: true to enable automatic generation

Set the variable CONTAINER_NOTIFY to a list of container names that should be notified if the certificates changed.

If DH_MAX_AGE is set a file dhparam.pem is generated and recreated in /acme/crt/.

• ACME_CA: URL to ACME CA (Default: https://acme-v01.api.letsencrypt.org)
• ACME_INTERMEDIATE: Path to intermediate certificate (Default: https://letsencrypt.org/certs/lets-encrypt-x3-cross-signed.pem)
• CHAINED_CRT: If true add intermediate certificate to *.crt (Default: true)
• CONTAINER_NOTIFY: Names of container for notification (, separated for multiple container)
• CRT_MAX_AGE: Max age of certificate before renew in days (Default: 30)
• DH_MAX_AGE: Max age of Diffie-Hellman param file before renew in days (Default: off)