Public | Automated Build

Last pushed: 9 months ago
Short Description
letsencrypt docker image for automatically apply or renew cert for domains hosted on aliyun cdn
Full Description



Automatically apply and renew certificates for domains hosted on aliyun cdn. It is based on xenolf/lego and ali-sdk/aliyun-cdn-sdk, thanks for their great works!


  • Letsencrypt certificates only. It is free!
  • Apply for certs automatically. Auto renew certs 10 days before it is expired.
  • Support a lot of DNS providers such as dnspod、Route 53、vultr、digitalocean. DNS Providers Full List


$ docker pull daxingplay/letsencrypt-aliyun-cdn
$ docker start -e ACCESS_KEY_ID='ACCESS KEY for your aliyun account' \
  -e ACCESS_SECRET='ACCESS SECRET for your aliyun account' \
  -e DOMAINS=',,' \
  -e EMAIL='' \
  -e DNS_TYPE='dnspod' \
  -e DNSPOD_API_KEY='xxx' \

Environment Viarables

  • ACCESS_KEY_ID: ACCESS KEY for aliyun account, we suggest you to use ram account for minimum privileges.
  • ACCESS_SECRET: ACCESS SECRET for aliyun account.
  • DOMAINS: The domains need to apply for free certs. These domains must be using aliyun CDN services already. Multiple domains should be separeted by comma, and they must use the same DNS provider.
  • DNS_TYPE: The DNS provider used by the domains above.
  • According to the DNS provider you use, you need to set different environment viarables for proper API token:
    • dnspod:
      • DNSPOD_API_KEY: The format is id,token, eg: 1235,abcdefghigj
    • digitalocean:
      • DO_AUTH_TOKEN:The API token you applied at DO admin console.


Docker Pull Command