Skip to content

Instantly share code, notes, and snippets.

@ciampo

ciampo/instructions.md

Last active November 8, 2016 11:01
Show Gist options
  • Save ciampo/79e79093cbf12ce625cdc7042d2e1cc9 to your computer and use it in GitHub Desktop.
Save ciampo/79e79093cbf12ce625cdc7042d2e1cc9 to your computer and use it in GitHub Desktop.
Download ZIP
SSL certificate with Google App Engine
Raw
instructions.md

1. Clone the repo

git clone https://github.com/diafygi/letsencrypt-nosudo.git
cd letsencrypt-nosudo

2. Generate Let's Encrypt user account key

openssl genrsa 2048 > user.key
openssl rsa -in user.key -pubout > user.pub

3. Generate a Certificate Signing Request for 

openssl genrsa 2048 > domain.key
openssl req -new -sha256 -key domain.key -subj "/CN=<your-domain>" > domain.csr

4. Signing the certificate

python sign_csr.py --file-based --public-key user.pub domain.csr > signed.crt

Now follow the instructions:

  • Type your email
  • Run the manual commands in a separate terminal window (cd to this same folder)
  • Upload a new version of your website containing the file requested by the script

5. Uploading the certificate to GAE

Prerequisites: you must have correctly setup a custom domain.

Go to the App Engine -> Settings -> SSL certificates -> Upload new certificate

Select signed.crt as the public key certificate, and domain.key as the RSA private key

Click upload, then enable SSL for the custom domain by ticking the checkbox and clicking Save

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment