On 10/7/2020 10:12 AM, Garret Wilson wrote:
…
But anyway, let me tell you the idea I had this morning. In a way, you
hinted at it in your reply. Why do I need to use S3 as a store if my
application is running on AWS, and AWS already has the AWS Certificate
Manager which already manages an SSL certificate with renewal! In
essence the AWS Certificate Manager is the "data store/state" like S3,
and I don't even need to call Let's Encrypt.
Darn, it turns out AWS doesn't allow me to directly use AWS Certificate
Manager certificates directly in my application.
You cannot install your ACM certificate or your private ACM Private
CA certificate directly on your AWS based website or application.
(https://docs.aws.amazon.com/acm/latest/userguide/acm-services.html)
I guess it's back to Let's Encrypt using the original approach then.
I've already purchased a book on the intricacies of SSL certificates and
I have more on my shopping list. I'll start working on this and get back
to you with questions.
Cheers,
Garret
