Let’s Encrypt is a free, automated, and open Certificate Authority.
This image is based on ppa:certbot/certbot packages for Ubuntu Xenial and is built on top of clover/python.
By default, the container will only renew certificates every day in a webroot mode.
| Location | Description |
|---|---|
/etc/letsencrypt |
certificates, private keys and certbot configuration files |
/var/www/.well-known/acme-challenge |
(not exported) acme challenges in webroot mode |
/var/log/letsencrypt |
(not exported) certbot log files |
/var/lib/letsencrypt |
(not exported) certbot working directory |
PUID/PGID owner will be recursively set to all directories listed above at startup.
| Port | Description |
|---|---|
80 |
HTTP in a standalone web server mode * |
443 |
HTTPS in a standalone web server mode * |
* webroot mode is used by default, there are no processes listening on ports above.
| Name | Default value | Description |
|---|---|---|
PUID |
50 |
Desired UID of the process owner ** |
PGID |
primary group id of the UID user (50) |
Desired GID of the process owner ** |
** PUID/PGID could be used to preserve data volume ownership on host.
| Location | Description |
|---|---|
/etc/letsencrypt/cli.ini |
Default certbot configuration |