ALLinSSL: Automated SSL Certificate Lifecycle Management

ALLinSSL is a comprehensive tool for managing the entire SSL certificate lifecycle. It centralizes requests, deployment, and monitoring into a single, unified interface.

Managing certificates across numerous websites and cloud providers often becomes complex and difficult to track. ALLinSSL addresses this by automating requests, renewals, and deployments while maintaining a constant watch on expiration dates.

Key Features

• Fully Automated Issuance and Renewal – Eliminates manual intervention by requesting new certificates before existing ones expire.
• Cross-Platform Deployment – Compatible with various CDNs, hosting panels, and cloud storage providers, including Alibaba Cloud CDN, Tencent Cloud COS, Baota Panel, and 1Panel.
• Expiration Tracking – Provides an at-a-glance view of remaining validity and sends alerts as certificates approach their expiration date.
• Access Security – Includes built-in protections for secure entry and operations.
• Intuitive Management Interface – A clean, visual dashboard makes handling multiple certificates straightforward and efficient.

Installation

System Requirement: Linux

To install, execute the following command in your terminal: curl -sSO http://download.allinssl.com/install_allinssl.sh && bash install_allinssl.sh allinssl

Docker Installation

Run the following command:

docker run -itd \
  --name allinssl \
  -p 7979:8888 \
  -v /www/allinssl/data:/www/allinssl/data \
  -e ALLINSSL_USER=allinssl \
  -e ALLINSSL_PWD=allinssldocker \
  -e ALLINSSL_URL=allinssl \
  allinssl/allinssl:latest

Compiling from Source

1. Download and extract the latest release package.
2. Compile the Go binary (allinssl).
3. Launch the service on Linux: ./allinssl start

Note the binary name and working directory. The recommended installation path is /www/allinssl/. Ensure the binary is named allinssl and create a symbolic link for allinssl.sh in /usr/bin/.

Configuration

Once installation is complete, navigate to http://your-server-ip:port/security-entry. Begin by adding your DNS provider and hosting provider credentials, then proceed to create a workflow.

Core Features – Supported Providers

• DNS Verification: Alibaba Cloud, Tencent Cloud, Cloudflare.
• Certificate Deployment: Baota Panel, 1Panel, Alibaba Cloud CDN, Tencent Cloud COS.
• Monitoring Alerts: Email, Webhook, DingTalk.

Automation Workflow

1. Request: Initiate the certificate request.
2. Monitor: Track validity period.
3. Trigger: When 30 days of validity remain, the renewal process begins.
4. Renew: The certificate is automatically updated.
5. Deploy: The new certificate is pushed to the target platform.
6. Notify: A final notification is sent with the operation results.

CLI Commands

Basic Operations

• allinssl 1 – Start the service.
• allinssl 2 – Stop the service.
• allinssl 3 – Restart the service.
• allinssl 4 – Modify the security entry URL.
• allinssl 5 – Change the username.
• allinssl 6 – Change the password.
• allinssl 7 – Change the port.

Web Service Management

• allinssl 8 – Stop the web service.
• allinssl 9 – Start the web service.
• allinssl 10 – Restart the web service.

Background Task Management

• allinssl 11 – Stop the background scheduler.
• allinssl 12 – Start the background scheduler.
• allinssl 13 – Restart the background scheduler.

System Management

• allinssl 14 – Disable HTTPS.
• allinssl 15 – Display the panel access address.
• allinssl 16 – Update ALLinSSL to the latest version (overwrites existing files).
• allinssl 17 – Uninstall ALLinSSL.