|
|
|
@ -0,0 +1,25 @@ |
|
|
|
#!/bin/bash |
|
|
|
|
|
|
|
#Configuration variables |
|
|
|
certbot_bin="/root/letsencrypt/certbot-auto" |
|
|
|
haproxy_pem_path="/etc/haproxy/cert" |
|
|
|
|
|
|
|
#Renew all certificates that needed it |
|
|
|
${certbot_bin} renew |
|
|
|
if [ $? -eq 0 ]; then |
|
|
|
echo "Certificates renewed ! Now creating .pem" |
|
|
|
else |
|
|
|
echo "$(date +%c) Error renewing certificates with error code $?, exit script..." |
|
|
|
exit 1 |
|
|
|
fi |
|
|
|
|
|
|
|
#Then, create domain.pem containing fullchain et privkey for haproxy |
|
|
|
for domainconf in $(ls /etc/letsencrypt/renewal/ | awk -F'/' '{print $5}'); do |
|
|
|
domain=${domainconf%.conf} |
|
|
|
echo "create ${domain}.pem" |
|
|
|
cat /etc/letsencrypt/live/${domain]/fullchain.pem /etc/letsencrypt/live/${domain}/privkey.pem > ${haproxy_pem_path}/${domain}.pem |
|
|
|
done |
|
|
|
|
|
|
|
# At the end, reload haproxy |
|
|
|
service haproxy reload |
|
|
|
|
Victor
7 years ago