Yes, if tomcat can supports hot reloading of certs it is very feasible: https://github.com/rmannibucau/letsencrypt-manager/blob/master/src/main/java/com/github/rmannibucau/letsencrypt/manager/LetsEncryptManager.java
Romain Manni-Bucau @rmannibucau <https://twitter.com/rmannibucau> | Blog <https://rmannibucau.metawerx.net/> | Old Blog <http://rmannibucau.wordpress.com> | Github <https://github.com/rmannibucau> | LinkedIn <https://www.linkedin.com/in/rmannibucau> 2018-01-02 16:56 GMT+01:00 Emmanuel Bourg <ebo...@apache.org>: > Le 02/01/2018 à 09:40, Romain Manni-Bucau a écrit : > > up? > > I haven't got much time to look into this yet. However since Let's > Encrypt client implementations in Java are starting to appear [1] I > wonder if the certificate renewal process could be directly integrated > into Tomcat instead of relying on an external client such as certbot. > > Emmanuel Bourg > > [1] https://github.com/shred/acme4j >