to git make

cleate_certs.sh

@@ -0,0 +1,13 @@
+#!/bin/bash
+# create new cert
+domains=( "nixtech.ru" "qbpro.ru" "support.qbpro.ru" "webmail.qbpro.ru" );
+adminmail="stvixfree@gmail.com";
+
+function createCert() {
+for ((dmn=0; dmn != ${#domains[@]}; dmn++))
+    do
+certbot certonly --standalone -d ${domains[$dmn]} --non-interactive --agree-tos --email $adminmail  --http-01-port=55777
+done
+}
+
+createCert;

dehydrated/make_ssl-dehydrated.sh

@@ -0,0 +1,31 @@
+#!/bin/bash
+# script convert end make ssl sert for https
+# info - https://sysadmin.pm/dehydrated-letsencrypt/
+#
+path_ssl="/etc/ssl/private";
+path_certbot="/var/lib/dehydrated/certs";
+domains=( "qbpro.ru" "webmail.qbpro.ru" "support.qbpro.ru" );
+
+function makeSslPem() {
+for ((dmn=0; dmn != ${#domains[@]}; dmn++))
+    do
+    cat $path_certbot/${domains[$dmn]}/cert.pem > $path_ssl/${domains[$dmn]}.pem;
+    cat $path_certbot/${domains[$dmn]}/chain.pem >> $path_ssl/${domains[$dmn]}.pem;
+    cat $path_certbot/${domains[$dmn]}/fullchain.pem >> $path_ssl/${domains[$dmn]}.pem;
+    cat $path_certbot/${domains[$dmn]}/privkey.pem >> $path_ssl/${domains[$dmn]}.pem;
+done
+}
+
+function makePemList() {
+:>/etc/ssl/crt-list.txt
+for ((icrt=0; icrt != ${#domains[@]}; icrt++))
+    do
+    echo "$path_ssl/${domains[$icrt]}.pem">>/etc/ssl/crt-list.txt
+done
+}
+
+## create sets.pem
+makeSslPem;
+makePemList;
+
+

dehydrated/renew-ssl.sh

@@ -0,0 +1,15 @@
+#!/bin/bash
+#
+# renew certbot ssl certificates
+#
+logfile="/var/log/syslog";
+
+if [ $(dehydrated -c -4|grep 'Certificate will not expire'|wc -l) != 0 ];
+    then
+	echo "$(date +%c) certbot(dehydrated): no certificates to upgrade...">>$logfile;
+	exit;
+    else
+	/etc/scripts/sertbot/dehydrated/make_ssl-dehydrated.sh;
+	/etc/init.d/haproxy restart;
+	echo "$(date +%c) certbot(dehydrated): updating sertificate">>$logfile;
+fi