A quick message here to announce a project that I worked on over the weekend. It allows all the fan of AWS to schedule a certificate renewal using AWS Lambda using dns-01 challenges. If everything goes well, the taks should install the newly generated certificate into your ELB automagically.
The script is using the official client python library (albeit, the integration branch for
dns-01) and boto.
Cherry on the cake, it knows how to re-use previously generated public keys to ensure that all renewed certificates keep on matching any public key pinning policy (it is optional of course).
Comments, PR and issues are very welcome.
Long live letsencrypt