• Custom Docker image: Based on certbot/certbot, with the Stackit DNS plugin installed.
• Docker Compose service to request wildcard certificates.

./letsencrypt/live/<your-domain>/
├── cert.pem            # Your domain’s certificate
├── chain.pem           # The Let's Encrypt chain
├── fullchain.pem       # cert.pem + chain.pem (what you usually use)
├── privkey.pem         # Your private key

This setup is provided as an example only and is not ready for production use. It lacks container image best practices, such as proper security hardening, minimal image sizes, and other considerations necessary for production environments. Use at your own risk and ensure you follow best practices before deploying to production.

⚠️️️ Make sure the file is secure: (chmod 600 stackit.ini)

dns_stackit_auth_token = YOUR_API_TOKEN
dns_stackit_project_id = YOUR_PROJECT_ID

DOMAIN=example.com
WILDCARD=*.example.com

docker compose up certbot

The certs and the live folder will be root:root, in order to access them with your user

sudo chown -R $(id -u):$(id -g) ./letsencrypt