poidl edited a comment on issue #2955: URL: https://github.com/apache/apisix/issues/2955#issuecomment-738711954
Let me see if I summarize correctly: If I use apisix for the sole purpose of serving two domains, `example1.com` and `example2.com` for which I have two cert/keys from letsencrypt, say - (fullchain1.pem, privkey1.pem) for `example1.com` - (fullchain2.pem, privkey2.pem) for `example2.com`, then the suggested steps are: 1. Create a random cert/key (dummycert.pem, dummykey.pem) locally for the purpose of starting apisix. **This cert/key is never used for encrypting anything (correct??) [EDIT: I think it's incorrect, see next post]**. Since it is not used to encrypt anything, I **never have to update or change it (??) [EDIT: I think it's incorrect, see next post]**. 2. Use the admin API as decribed in https://github.com/apache/apisix/blob/master/doc/https.md to upload the letsencrypt cert/keys with something like ``` curl http://127.0.0.1:9180/apisix/admin/ssl/1 -H 'X-API-KEY: edd1c9f034335f136f87ad84b625c8f1' -X PUT -d ' { "cert": "$(cat fullchain1.pem)", "key": "$(cat privkey1.pem)", "sni": "example1.com" }' ``` ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
