← Back to context

Comment by mike-cardwell

11 years ago

I'm hoping that one day soon, I'll be able to remove this line from my nginx config:

  ssl_certificate /path/to/file.crt;

My web server will notice that I want SSL, but haven't specified a path to a cert. It will then go off and generate one and get it signed automatically using an API like the one being discussed. It will also handle renewing automatically when the time comes.

1 comment

mike-cardwell

Reply
TillE  11 years ago

Automatic unconfigured behavior is bad, but something like a ssl_certificate_auto directive that's in the default config would make a lot of sense.