Automatic Let's Encrypt certificate provisioning and renewal
|Reported by:||Owned by:|
I would like to request built-in support for automatic provisioning and renewal of Let's Encrypt certificates.
Currently, setting up and auto-renewing Let's Encrypt's free certificates for nginx using certbot or other tools is somewhat complex and difficult. It would be helpful for admins if this process could be made as simple as possible, by providing a one-line, built-in declarative command in the nginx.conf file.
In the longer term, a future version of nginx could provide automatic https setup by default for all new websites, and even automatically enable encryption on existing websites. That would support the goal of making the Web 100% HTTPS.
(Currently, caddy supports HTTPS out-of-the-box, and Apache supports HTTPS with the built-in https://httpd.apache.org/docs/trunk/mod/mod_md.html plugin.)