fws
/
smeserver-letsencrypt-client
4
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Adapt hook scripts

Browse Source
tags/smeserver-letsencrypt-client-0.2.4-1
Daniel Berteaud 9 years ago
parent c926162fc3
commit 3a24f881ba
2 changed files with 37 additions and 39 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 7
      root/etc/letsencrypt.sh/hooks_clean_challenge.d/10smeserver.sh
  2. 69
      root/etc/letsencrypt.sh/hooks_deploy_cert.d/10smeserver.sh

7
root/etc/letsencrypt.sh/hooks_clean_challenge.d/10smeserver.sh
Unescape View File

@ -0,0 +1,7 @@
#!/bin/sh
ALTNAME=${1}
if [[ "$ALTNAME" == "" ]]; then
echo "Error while creating or renewing letsencrypt certificate" | mail -s "Letsencrypt error" admin
fi

69
root/etc/letsencrypt.sh/hooks_deploy_cert.d/10smeserver.sh
Unescape View File

@ -1,44 +1,35 @@
#!/bin/sh #!/bin/sh
ACTION=${1} # New cert
DOM=${1}
if [[ "$ACTION" == "deploy_cert" ]]; then KEY=${2}
# New cert CRT=${3}
DOM=${2} CHAIN=${4}
KEY=${3} /sbin/e-smith/db configuration setprop modSSL key $KEY crt $CRT CertificateChainFile $CHAIN
CRT=${4} # There's a new ssl-udpate event which update everything in a single event
CHAIN=${5} # fallback to manual operations if this event doesn't exist
/sbin/e-smith/db configuration setprop modSSL key $KEY crt $CRT CertificateChainFile $CHAIN if [ -d /etc/e-smith/events/ssl-update ]; then
# There's a new ssl-udpate event which update everything in a single event /sbin/e-smith/signal-event ssl-update
# fallback to manual operations if this event doesn't exist else
if [ -d /etc/e-smith/events/ssl-update ]; then /sbin/e-smith/expand-template /home/e-smith/db/ssl.pem/pem
/sbin/e-smith/signal-event ssl-update /sbin/e-smith/expand-template /etc/httpd/conf/httpd.conf
/sbin/e-smith/expand-template /var/service/qpsmtpd/ssl/cert.pem
/usr/bin/sv 1 /service/httpd-e-smith
/usr/bin/sv h /service/ldap
/usr/bin/sv 1 /service/pop3s
/usr/bin/sv h /service/qpsmtpd
/usr/bin/sv h /service/sqpsmtpd
if [ -d /service/dovecot ]; then
/usr/bin/sv 1 /service/dovecot
/usr/bin/sv h /service/dovecot
else else
/sbin/e-smith/expand-template /home/e-smith/db/ssl.pem/pem /usr/bin/sv 1 /service/imaps
/sbin/e-smith/expand-template /etc/httpd/conf/httpd.conf
/sbin/e-smith/expand-template /var/service/qpsmtpd/ssl/cert.pem
/usr/bin/sv 1 /service/httpd-e-smith
/usr/bin/sv h /service/ldap
/usr/bin/sv 1 /service/pop3s
/usr/bin/sv h /service/qpsmtpd
/usr/bin/sv h /service/sqpsmtpd
if [ -d /service/dovecot ]; then
/usr/bin/sv 1 /service/dovecot
/usr/bin/sv h /service/dovecot
else
/usr/bin/sv 1 /service/imaps
fi
fi
# Now revoke old certificates
CUR_CRT=$(readlink /home/e-smith/db/letsencrypt.sh/certs/$DOM/cert.pem)
for cert in $(find /home/e-smith/db/letsencrypt.sh/certs/$DOM/ -type f -name cert\*.pem -exec basename "{}" \;); do
if [[ "$cert" != "$CUR_CRT" ]]; then
/usr/bin/letsencrypt.sh -r /home/e-smith/db/letsencrypt.sh/certs/$DOM/$cert
fi
done
elif [[ "$ACTION" == "clean_challenge" ]]; then
ALTNAME=${2}
if [[ "$ALTNAME" == "" ]]; then
echo "Error while creating or renewing letsencrypt certificate" | mail -s "Letsencrypt error" admin
fi fi
fi fi
# Now revoke old certificates
CUR_CRT=$(readlink /home/e-smith/db/letsencrypt.sh/certs/$DOM/cert.pem)
for cert in $(find /home/e-smith/db/letsencrypt.sh/certs/$DOM/ -type f -name cert\*.pem -exec basename "{}" \;); do
if [[ "$cert" != "$CUR_CRT" ]]; then
/usr/bin/letsencrypt.sh -r /home/e-smith/db/letsencrypt.sh/certs/$DOM/$cert
fi
done

Write Preview
Loading…
Cancel
Save