thomas
/
sovereign
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
695 Commits
1 Branch
Tree: 2062225709
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2062225709'
${ noResults }
sovereign/roles/common/files/etc_cron-monthly_letsencryp...

etc_cron-monthly_letsencrypt-renew 713B
History Raw

123456789101112131415161718192021 
  1. #!/bin/bash

  2. # Renew all live certificates with LetsEncrypt.  This needs to run at least

  3. # once every three months.

  4. 

  5. # Given a certificate file returns "domain1,domain2"

  6. # https://community.letsencrypt.org/t/help-me-understand-renewal-config/7115

  7. function getDomains() {

  8.         openssl x509 -text -in "$1" |

  9.         grep -A1 "Subject Alternative Name:" | tail -n1 |

  10.         tr -d ' ' | tr -d 'DNS:'

  11. }

  12. 

  13. service apache2 stop

  14. for c in `ls /etc/letsencrypt/live`; do

  15.   domains=$(getDomains /etc/letsencrypt/live/$c/cert.pem)

  16.   /root/letsencrypt/letsencrypt-auto --renew certonly -c /etc/letsencrypt/cli.conf --domains=$domains

  17. done

  18. service apache2 start

  19. 

  20. # Services that rely on LE certificates will need restarted.