LEGO

  • Canonical Telco
Channel Revision Published Runs on
4/beta 15 08 Oct 2024
Ubuntu 22.04
4/edge 35 17 Dec 2024
Ubuntu 22.04
4/edge 34 17 Dec 2024
Ubuntu 22.04
juju deploy lego --channel 4/beta
Show information

Platform:

Ubuntu
22.04

Configure with HTTPReq DNS plugin information

In this guide, we will go through the steps neccessary to use the LEGO Operator for providing certificates to another charm using the httpreq dns plugin.

Create a Juju Model:

juju add-model <your model name>

Deploy the Lego charm:

juju deploy lego --channel 4/edge

Configure the charm with your ACME information:

juju config lego \
  server=<your ACME server> \
  email=<your email address> \
  plugin=httpreq

Lego operator accepts all of the environment variables defined in the LEGO documentation as keys in the secret you’ve provided. Provide the configuration for the httpreq as a juju secret:

$ juju add-secret lego-credentials httpreq-endpoint=kgemalmaz.com
secret:crr9g37mp25c77tv2atg
$ juju grant-secret lego-credentials lego
$ juju config lego plugin-config-secret-id=crr9g37mp25c77tv2atg

If the URL is valid, you should see that your charm is now in an active state

Model  Controller          Cloud/Region        Version  SLA          Timestamp
demo   microk8s-localhost  microk8s/localhost  3.4.5    unsupported  14:36:17+03:00

App   Version  Status  Scale  Charm  Channel  Rev  Address         Exposed  Message
lego           active      1  lego   4/edge     7  10.152.183.196  no       0/0 certificate requests are fulfilled

Unit     Workload  Agent  Address      Ports  Message
lego/0*  active    idle   10.1.90.177         0/0 certificate requests are fulfilled

Deploy your charm that requires TLS certificates and integrate it with the Lego charm:

juju deploy <your charm>
juju integrate <your charm> lego

Help improve this document in the forum (guidelines). Last updated 2 months ago.