← frouo.com


Server

How to generate SSL certificate

1. Install certbot

brew install certbot

Certbot is a free, open source software tool for automatically using Let’s Encrypt certificates on manually-administrated websites to enable HTTPS.

Certbot is made by the Electronic Frontier Foundation (EFF), a 501(c)3 nonprofit based in San Francisco, CA, that defends digital privacy, free speech, and innovation.

2. Run

sudo certbot certonly --manual --preferred-challenges dns

Follow the CLI instructions:

3. Add TXT entry in your DNS zone

In your domain registrar, deploy a new TXT record in your domain DNS zone. I am using OVH:

The TXT modification will be applied immediately on the DNS zone, but the change may take up to 24 hours to propagate.

In my case, the change spread almost instantly.

Une online tools, such as the Google Admin Toolbox ↗, to check if your TXT has been deployed.

Once deployed, hit Enter to continue...

4. Here is your certificate

Let's Encrypt will check the TXT record, sign the cert, and certbot will save it for you to upload to Heroku.

Note this certificate expires in 3 months, on 2021-12-20. I am writing this lines on 2021-09-21.

References

Certbot - Install instructions ↗

Certbot - About ↗

Thank you

Hope it helps.

The source code for this blog is available on GitHub.