Could you help me understand the difference between the acme and zerossl modules please, and why by default it creates both.
With a single route defined if I run
caddy adapt
I see that in the automation.policies.issuers it creates two entries, one with the ‘acme’ module and one with the ‘zerossl’ module. I’m not clear on how these differ given they both take ‘ca’ parameters. I assume this isn’t related to actually serving zerossl certs? The descriptions seem pretty similar:
ACME
manages certificates using the ACME protocol (RFC 8555).
ZEROSSL
makes an ACME manager for managing certificates using ACME.
"automation": {
"policies": [
{
"issuers": [
{
"ca": "https://acme-staging-v02.api.letsencrypt.org/directory",
"challenges": {
"dns": {
"override_domain": "___",
"provider": {
"aws_profile": "default",
"max_retries": 1,
"name": "route53"
}
}
},
"module": "acme"
},
{
"ca": "https://acme-staging-v02.api.letsencrypt.org/directory",
"challenges": {
"dns": {
"override_domain": "___",
"provider": {
"aws_profile": "default",
"max_retries": 1,
"name": "route53"
}
}
},
"module": "zerossl"
}
]