I’ve been running something of a Rube Goldberg machine involving Ansible + nginx + letsencrypt to provide a secure endpoint for our user’s custom domains. They point they domain name to our proxy, we provide the SSL certs through LetsEncrypt, and forward the request on to our apps servers
Anyway…
I’m considering migrating to Caddy to simplify the deployment of this stack and reduce the number of moving parts. I’ve built a quick prototype and it appears to work really well
But I’m wondering if I can / should migrate the existing LetsEncrypt certs?
I’ve currently got 171 sites configured with certs from LetsEncrypt (using the letsencrypt
command line tool).
- Can I reference those existing certs from Caddy?
- Should I? Or should I let Caddy try to reissue them? Does that even work?
- And if I just reference them from the Caddyfile, how will they be renewed?