#!/bin/bash

#Configuration variables
certbot_bin="/usr/bin/certbot"
postfix_pem_path="/etc/ssl/"
mail_server="192.168.201.172"

if [ ! $# -ge 1 ] ; then
echo "$(date +%c) Please give domain name as parameter"
exit 1
fi

DOMAIN_OPTION=""

for domain in "${@}"; do
	DOMAIN_OPTION="${DOMAIN_OPTION} -d mail.${domain} -d smtp.${domain} -d imap.${domain}"
done

echo "$(date +%c) Generate certificat for ${@}"

${certbot_bin}  certonly ${DOMAIN_OPTION} --renew-by-default --http-01-port 63443 --agree-tos
if [ $? -eq 0 ]; then
    echo "$(date +%c) Success!"
    rsync -az -L /etc/letsencrypt/live/mail.$1/cert.pem /etc/letsencrypt/live/mail.$1/privkey.pem /etc/letsencrypt/live/mail.$1/chain.pem ssl-san@${mail_server}:${postfix_pem_path}
    ssh ssl-san@${mail_server} "sudo systemctl reload postfix"
    ssh ssl-san@${mail_server} "sudo systemctl restart dovecot"
else
    echo "$(date +%c) Error creating certificate with error code $?, exit script..."
    exit 1
fi
exit 0