dlapiduz / certbot-azure Goto Github PK

I have a top level domain hosted on Azure CDN, for which they don't provide automated certificate issuance and deployment.
Would you accept a PR that adds CDN deployment support?

pip install certbot-azure
Requirement already satisfied: certbot-azure in /usr/local/lib/python3.8/site-packages (0.0.1)
Requirement already satisfied: zope.interface in /usr/local/lib/python3.8/site-packages (from certbot-azure) (4.7.1)
Requirement already satisfied: PyOpenSSL>=17.1.0 in /usr/local/lib/python3.8/site-packages (from certbot-azure) (19.1.0)
Requirement already satisfied: certbot>=0.26.0 in /opt/certbot/src/certbot (from certbot-azure) (1.3.0)
Requirement already satisfied: azure-mgmt-resource in /usr/local/lib/python3.8/site-packages (from certbot-azure) (9.0.0)
Requirement already satisfied: setuptools in /usr/local/lib/python3.8/site-packages (from certbot-azure) (45.2.0)
Requirement already satisfied: azure-mgmt-network in /usr/local/lib/python3.8/site-packages (from certbot-azure) (10.1.0)
Requirement already satisfied: mock in /usr/local/lib/python3.8/site-packages (from certbot-azure) (1.3.0)
Requirement already satisfied: acme>=0.26.1 in /opt/certbot/src/acme (from certbot-azure) (1.3.0)
Requirement already satisfied: six>=1.5.2 in /usr/local/lib/python3.8/site-packages (from PyOpenSSL>=17.1.0->certbot-azure) (1.14.0)
Requirement already satisfied: cryptography>=2.8 in /usr/local/lib/python3.8/site-packages (from PyOpenSSL>=17.1.0->certbot-azure) (2.8)
Requirement already satisfied: ConfigArgParse>=0.9.3 in /usr/local/lib/python3.8/site-packages (from certbot>=0.26.0->certbot-azure) (1.0)
Requirement already satisfied: configobj in /usr/local/lib/python3.8/site-packages (from certbot>=0.26.0->certbot-azure) (5.0.6)
Requirement already satisfied: distro>=1.0.1 in /usr/local/lib/python3.8/site-packages (from certbot>=0.26.0->certbot-azure) (1.4.0)
Requirement already satisfied: josepy>=1.1.0 in /usr/local/lib/python3.8/site-packages (from certbot>=0.26.0->certbot-azure) (1.2.0)
Requirement already satisfied: parsedatetime>=1.3 in /usr/local/lib/python3.8/site-packages (from certbot>=0.26.0->certbot-azure) (2.5)
Requirement already satisfied: pyrfc3339 in /usr/local/lib/python3.8/site-packages (from certbot>=0.26.0->certbot-azure) (1.1)
Requirement already satisfied: pytz in /usr/local/lib/python3.8/site-packages (from certbot>=0.26.0->certbot-azure) (2019.3)
Requirement already satisfied: zope.component in /usr/local/lib/python3.8/site-packages (from certbot>=0.26.0->certbot-azure) (4.6)
Requirement already satisfied: msrest>=0.5.0 in /usr/local/lib/python3.8/site-packages (from azure-mgmt-resource->certbot-azure) (0.6.13)
Requirement already satisfied: msrestazure<2.0.0,>=0.4.32 in /usr/local/lib/python3.8/site-packages (from azure-mgmt-resource->certbot-azure) (0.6.3)
Requirement already satisfied: azure-common~=1.1 in /usr/local/lib/python3.8/site-packages (from azure-mgmt-resource->certbot-azure) (1.1.25)
Requirement already satisfied: pbr>=0.11 in /usr/local/lib/python3.8/site-packages (from mock->certbot-azure) (5.4.4)
Requirement already satisfied: requests[security]>=2.6.0 in /usr/local/lib/python3.8/site-packages (from acme>=0.26.1->certbot-azure) (2.22.0)
Requirement already satisfied: requests-toolbelt>=0.3.0 in /usr/local/lib/python3.8/site-packages (from acme>=0.26.1->certbot-azure) (0.9.1)
Requirement already satisfied: cffi!=1.11.3,>=1.8 in /usr/local/lib/python3.8/site-packages (from cryptography>=2.8->PyOpenSSL>=17.1.0->certbot-azure) (1.13.2)
Requirement already satisfied: zope.event in /usr/local/lib/python3.8/site-packages (from zope.component->certbot>=0.26.0->certbot-azure) (4.4)
Requirement already satisfied: zope.deprecation>=4.3.0 in /usr/local/lib/python3.8/site-packages (from zope.component->certbot>=0.26.0->certbot-azure) (4.4.0)
Requirement already satisfied: zope.hookable>=4.2.0 in /usr/local/lib/python3.8/site-packages (from zope.component->certbot>=0.26.0->certbot-azure) (5.0.0)
Requirement already satisfied: zope.deferredimport>=4.2.1 in /usr/local/lib/python3.8/site-packages (from zope.component->certbot>=0.26.0->certbot-azure) (4.3.1)
Requirement already satisfied: isodate>=0.6.0 in /usr/local/lib/python3.8/site-packages (from msrest>=0.5.0->azure-mgmt-resource->certbot-azure) (0.6.0)
Requirement already satisfied: certifi>=2017.4.17 in /usr/local/lib/python3.8/site-packages (from msrest>=0.5.0->azure-mgmt-resource->certbot-azure) (2019.11.28)
Requirement already satisfied: requests-oauthlib>=0.5.0 in /usr/local/lib/python3.8/site-packages (from msrest>=0.5.0->azure-mgmt-resource->certbot-azure) (1.3.0)
Requirement already satisfied: adal<2.0.0,>=0.6.0 in /usr/local/lib/python3.8/site-packages (from msrestazure<2.0.0,>=0.4.32->azure-mgmt-resource->certbot-azure) (1.2.2)
Requirement already satisfied: idna<2.9,>=2.5 in /usr/local/lib/python3.8/site-packages (from requests[security]>=2.6.0->acme>=0.26.1->certbot-azure) (2.8)
Requirement already satisfied: urllib3!=1.25.0,!=1.25.1,<1.26,>=1.21.1 in /usr/local/lib/python3.8/site-packages (from requests[security]>=2.6.0->acme>=0.26.1->certbot-azure) (1.25.8)
Requirement already satisfied: chardet<3.1.0,>=3.0.2 in /usr/local/lib/python3.8/site-packages (from requests[security]>=2.6.0->acme>=0.26.1->certbot-azure) (3.0.4)
Requirement already satisfied: pycparser in /usr/local/lib/python3.8/site-packages (from cffi!=1.11.3,>=1.8->cryptography>=2.8->PyOpenSSL>=17.1.0->certbot-azure) (2.19)
Requirement already satisfied: zope.proxy in /usr/local/lib/python3.8/site-packages (from zope.deferredimport>=4.2.1->zope.component->certbot>=0.26.0->certbot-azure) (4.3.3)
Requirement already satisfied: oauthlib>=3.0.0 in /usr/local/lib/python3.8/site-packages (from requests-oauthlib>=0.5.0->msrest>=0.5.0->azure-mgmt-resource->certbot-azure) (3.1.0)
Requirement already satisfied: PyJWT>=1.0.0 in /usr/local/lib/python3.8/site-packages (from adal<2.0.0,>=0.6.0->msrestazure<2.0.0,>=0.4.32->azure-mgmt-resource->certbot-azure) (1.7.1)
Requirement already satisfied: python-dateutil>=2.1.0 in /usr/local/lib/python3.8/site-packages (from adal<2.0.0,>=0.6.0->msrestazure<2.0.0,>=0.4.32->azure-mgmt-resource->certbot-azure) (2.8.1)

certbot certonly
Saving debug log to /var/log/letsencrypt/letsencrypt.log

How would you like to authenticate with the ACME CA?

1: Spin up a temporary webserver (standalone)
2: Place files in webroot directory (webroot)

Select the appropriate number [1-2] then [enter] (press 'c' to cancel): c
Could not choose appropriate plugin: authenticator could not be determined or is not installed

And if I try and run the whole deal:
docker run -i --rm \

--name=certbot-azure
-v /itapps-data/docker-certbot:/config:rw
certbot-azure:0.1
certonly
-d martindoormfg.net
--dns-azure --dns-azure-credentials /config/creds.json
--dns-azure-resource-group vsp-westus2
-i certbot-azure-ag:installer --certbot-azure-ag:installer-credentials /config/creds.json
--certbot-azure-ag:installer-resource-group vsp-westus2
--certbot-azure-ag:installer-app-gateway-name win-acme
usage:
certbot [SUBCOMMAND] [options] [-d DOMAIN] [-d DOMAIN] ...

Certbot can obtain and install HTTPS/TLS/SSL certificates. By default,
it will attempt to use a webserver both for obtaining and installing the
certificate.
certbot: error: unrecognized arguments: --dns-azure --dns-azure-credentials /config/creds.json --dns-azure-resource-group vsp-westus2 --certbot-azure-ag:installer-credentials /config/creds.json --certbot-azure-ag:installer-resource-group vsp-westus2 --certbot-azure-ag:installer-app-gateway-name win-acme

(I have also gone interactively into this docker container and ran the commands manually -- the result is the same. I can confirm my /config/ directory is mapped correctly and the values in creds.json are correct (same exact values work fine with win-acme).

I feel like I am missing something really simple here like it's not picking up the azure stuff -- any ideas?

Yes, this is in a docker but I really don't think thats the issue -- here is my dockerfile:

FROM certbot/certbot
WORKDIR /config
RUN pip install certbot-azure
ENTRYPOINT ["certbot"]

super simple