So far, I’ve only come across Let’s Encrypt integrations that are coupled with a server offering.
However, in my environment with multiple services, using different server technologies, it seems to me that having a “something else” (I’m thinking an appliance, a sidecar, a service) handle Let’s Encrypt certificate issuance and renewals, and then offer those via some read-only API to various servers as needed is a more decoupled approach.
Are there decoupled offerings like this out there? I want to say, “maintain certificate for some.domain.example.com” please, “here are my Route53 credentials for some.domain.example.com”. And then I can read an always-valid certificate via some GET /appliance/some.domain.example.com request. I may have missed something that meets this criteria, but my search hasn’t yielded anything so far.