openmediavault-letsencrypt

  • Hello folks. I tried searching but didn't seem to find any infos. For OMV5 there does not seem to be leetsencrypt plugin. I enabled the testing toggle in OMV-Extras but still can't seem to find letsencrypt listed in plugins. Is there a way to use the plug-in for OMV5?

    • Official Post

    Hello folks. I tried searching but didn't seem to find any infos. For OMV5 there does not seem to be leetsencrypt plugin. I enabled the testing toggle in OMV-Extras but still can't seem to find letsencrypt listed in plugins. Is there a way to use the plug-in for OMV5?

    https://forum.openmediavault.o…?postID=186122#post186122

    omv 7.4.10-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.14 | k8s 7.3.1-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.9


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

  • I have a docker running let'sencrypt. It's working fine!
    But I can not figure out how to use this certificate for the WebUI of OMV??
    there is no way to go and select it (as it was possible in OMV 4.X with letsencrypt plugin)
    Can you help?
    Thanks

    • Official Post

    Here is how I do it. Unfortunately I don't see a way to do it in the gui. This is for a wild card cert.


    Find the currently used certs.
    ls /etc/ssl//private/
    ls /etc/ssl/certs


    Then I run a script to copy the new cert to the proper place. It works but it is not pretty.



    It will ask for password but you could use ssh key to get around that.
    https://www.digitalocean.com/c…ication-on-a-linux-server

    • Official Post

    would it be possible to have a select file option instead of a drop-down menu to define the cert to use?

    The plugin is not being maintained anymore.

    omv 7.4.10-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.14 | k8s 7.3.1-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.9


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

    • Official Post

    it is not plugin related, it is in general settings, secure connections.

    I doubt Volker would change that since there is a section for certs with an option to import a cert. Once imported, it will show up in the drop down. Otherwise, here is the php code from the plugin that updates an existing cert with a new cert.

    omv 7.4.10-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.14 | k8s 7.3.1-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.9


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

    Edited once, last by ryecoaaron ().

  • I doubt Volker would change that since there is a section for certs with an option to import a cert. Once imported, it will show up in the drop down. Otherwise, here is the php code from the plugin that updates an existing cert with a new cert.

    If I'm not wrong, Import a cert in the cert section is by Copy-Paste the text .
    It is not so easy than importing a file, that is updated monthly by letsencrypt...


    As a example, in Emby Server, you can define where is the cert file... and even if it is updated by letsencrypt, secure access is always functionnal


    But may be the change would be better in the import cert section than in this general settings section ??

    • Official Post

    Import your cert the first time.

    Then you can use the script above. Just change the name and maybe fix the file type if required.


    I asked for the import file a long time ago. It was thought not to be needed. Or might be too hard. I forget. There are many types of file and it may take a lot of code to determine what form your cert is and convert it to what omv expects. This is open source and I am sure pull requests would be looked at. It is above my skill level.


    I showed what works for me on 4,x and it should be very similar for 5.x. If it does not work for you post a new thread and maybe some of us can help. It's been a while since I did this so maybe things have changed. But it still works for me.

    • Official Post

    If I'm not wrong, Import a cert in the cert section is by Copy-Paste the text .
    It is not so easy than importing a file, that is updated monthly by letsencrypt...

    I understand that. I was just mentioning why Volker probably won't change it to a file. And that is why I pointed to the code. It wouldn't be hard to have a cron job take the cert that the letsencrypt container is making and update the cert in OMV.

    omv 7.4.10-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.14 | k8s 7.3.1-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.9


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

    • Official Post

    Did I miss the code?

    Yep, you missed the link I forgot to post lol. Previous posted fixed too.


    https://github.com/OpenMediaVa…/rpc/letsencrypt.inc#L223

    omv 7.4.10-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.14 | k8s 7.3.1-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.9


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

  • I looked at the codes, and it seemed to be the similar solution: convert 'privkey.pem > omv--aabb.key; "fullchain.pem' > 'omv-abb.crt'.
    We still missing some piece of the puzzle to key it import into OMV GUI.

    OMV v5.0
    Asus Z97-A/3.1; i3-4370
    32GB RAM Corsair Vengeance Pro

    • Official Post

    We still missing some piece of the puzzle to key it import into OMV GUI.

    Line 229-234 does that. If you don't want to use php, the original bash code may still work - https://github.com/OpenMediaVa…/sbin/omv-letsencrypt#L50

    omv 7.4.10-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.14 | k8s 7.3.1-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.9


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!