#!/bin/bash

#Configuration variables
certbot_bin="/usr/local/bin/certbot"
haproxy_pem_path="/etc/haproxy/cert"

#Renew all certificates that needed it 
${certbot_bin} renew
if [ $? -eq 0 ]; then
	echo "$(date +%c)Certificates renewed ! Now creating .pem"
else
	echo "$(date +%c) Error renewing certificates with error code $?, exit script..."
	exit 1
fi

#Then, create domain.pem containing fullchain et privkey for haproxy
for domainconf in $(ls /etc/letsencrypt/renewal/); do
	domain=${domainconf%.conf}
	echo "$(date +%c)create ${domain}.pem"
	cat /etc/letsencrypt/live/${domain}/fullchain.pem /etc/letsencrypt/live/${domain}/privkey.pem > ${haproxy_pem_path}/${domain}.pem
done

# At the end, reload haproxy
echo "$(date +%c) Reload haproxy"
systemctl reload haproxy