# Auth Providers

Nginx-LE supports a number of auth providers. Each auth provider has its on method of configuration.

### HTTP01 Auth

This is the default Certbot authentication method and only works if your web server is exposed on a public IP address with ports 80 and 443 open.

HTTP01 Auth does not support wildcard certificates.

Set the following environment variables:

AUTH\_PROVIDER=HTTP01Auth

DOMAIN\_WILDCARD=false

### Namecheap

We don't recommend using this provider.

The Namecheap API is very crappy and requires that we update EVERY dns record to just modify a single record.

It is also currently limited to domains that have no more than 10 A records. This could be fixed by changing the request from a HTTP GET to a POST but unfortunately Namecheap hasn't documented the POST method.

AUTH\_PROVIDER=namecheap

AUTH\_PROVIDER\_TOKEN=name cheap Api Key

AUTH\_PROVIDER\_USERNAME=name cheap username

DOMAIN\_WILDCARD=true|false

### Cloudflare

This is the most versatile auth provider as it supports public and private websites as well as Wildcard and single FQDN certificates.

NOTE: currently we only support using a cloudflare global access token. A restricted API token will NOT WORK. This is due to ubuntu 20.04 using an old version of certbot. When a newer version is available we will upgrade to support the restricted access token.

AUTH\_PROVIDER=cloudflare

AUTH\_PROVIDER\_TOKEN=api token for cloudflare

AUTH\_PROVIDER\_EMAIL\_ADDRESS=email address used to acquire api token

DOMAIN\_WILDCARD=true|false

##