Exhaustive API's for certificate creation, renewal and revocation


#1

we are SaaS company. we are planning use let’s encrypt for our customers custom domain for our product. Requesting your API’s for creation, renewal and revocation from our product might be easy for us…

i couldn’t find a clear documentation for it. could you please me sharing the documentation link, information and whether the above use case is possible with let’s encrypt API’s?


#2

Hi @navi19

this is your main documentation:

Automatic Certificate Management Environment (ACME)

https://tools.ietf.org/html/draft-ietf-acme-acme-16

And check

there

The client implementation part

has a lot of libraries to use.


#3

Those are great suggestions, @JuergenAuer!

A few other things that might be relevant for people integrating with Let’s Encrypt who might potentially be writing their own ACME client:

① Rate limits (how many certificates you can request in various circumstances, and other limits on use of CA resources)

② ACME protocol updates (especially the “divergences” link, which describes ways that Let’s Encrypt’s current services don’t match the IETF ACME drafts)

③ The “API Announcements” category on this forum: if you subscribe to it, you can be notified of any API changes (such as rate limit changes, new API features, deprecation of functionality, availability of new ACME versions, etc.).

(It’s a good idea to subscribe to this if you’re hosting any service that integrates with Let’s Encrypt, regardless of whether you wrote your own client implementation.)