thomas
/
sovereign
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1085 Commits
1 Branch
Tree: c95b10aad9
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c95b10aad9'
${ noResults }
sovereign/roles/sslletsencrypt/files/letsencrypt-gencert

letsencrypt-gencert 1.1KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738 
  1. #!/bin/bash

  2. 

  3. # Call script like this:

  4. # letsencrypt-gencert foo.com bar.com baz.com

  5. 

  6. # Build list of domains and subdomains we need a certificate for

  7. d=""

  8. for domain in "$@"; do

  9.   # domain itself - foo.com

  10.   # only add if the DNS entry for the domain does actually exist

  11.   if (getent hosts $domain > /dev/null); then

  12.     if [ -z "$d" ]; then

  13.       d="$domain";

  14.     else

  15.       d="$d,$domain";

  16.     fi

  17.   fi

  18. 

  19.   # subdomains - www.foo.com mail.foo.com ...

  20.   # TODO includes servername (eddie / stage)!

  21.   for sub in stage www mail autoconfig stats news cloud git matrix status social comments iot wiki jitsi kanboard chat; do

  22.     # only add if the DNS entry for the subdomain does actually exist

  23.     if (getent hosts $sub.$domain > /dev/null); then

  24.       if [ -z "$d" ]; then

  25.         d="$sub.$domain";

  26.       else

  27.         d="$d,$sub.$domain";

  28.       fi

  29.     fi

  30.   done

  31. done

  32. 

  33. # We are using the "standalone" letsencrypt plugin, which runs its own

  34. # webserver, so we need to temporarily free up the HTTP(S) ports by stopping

  35. # our own Apache.

  36. service apache2 stop

  37. certbot certonly --standalone -c /etc/letsencrypt/cli.conf --domains $d

  38. service apache2 start