Home Explore Help
Sign In
master
/
auto4certbot
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

rebuild project 11.10.21:05.01

root 3 years ago
parent
fd26bc940d
commit
f268438415
4 changed files with 27 additions and 22 deletions
Unified View Show Diff Stats
  1. 3 0
      certbot.conf
  2. 7 4
      cleate_certs.sh
  3. 17 3
      dehydrated/make_ssl-dehydrated.sh
  4. 0 15
      dehydrated/renew-ssl.sh

+ 3 - 0
certbot.conf
View File 

@@ -0,0 +1,3 @@
1 
+adminmail="admin@mydomen.com";
2 
+domains=( "mydomen.org"
3 
+           );

+ 7 - 4
cleate_certs.sh
View File 

@@ -1,13 +1,16 @@
1 
 #!/bin/bash
 1 
 #!/bin/bash
2 
 # create new cert
 2 
 # create new cert
3 
-domains=( "mydomain.ru" "dev.mydomain.ru" "webmail.mydomain.ru" );
4 
-adminmail="admin@mydomain.ru";
3 
+src="/etc/scripts/autocertbot/certbot.conf"
5
4
6 
 function createCert() {
 5 
 function createCert() {
6 
+certbot register --agree-tos -m $adminmail;
7 
+/etc/init.d/haproxy stop;
8 
+
7 
 for ((dmn=0; dmn != ${#domains[@]}; dmn++))
 9 
 for ((dmn=0; dmn != ${#domains[@]}; dmn++))
8 
     do
 10 
     do
9 
-certbot certonly --standalone -d ${domains[$dmn]} --non-interactive --agree-tos --email $adminmail  --http-01-port=55777
10 
-done
11 
+      certbot certonly --preferred-challenges http --standalone -d ${domains[$dmn]};
12 
+    done
13 
+/etc/init.d/haproxy start;
11 
 }
 14 
 }
12
15
13 
 createCert;
 16 
 createCert;

+ 17 - 3
dehydrated/make_ssl-dehydrated.sh
View File 

@@ -4,7 +4,7 @@
4 
 #
 4 
 #
5 
 path_ssl="/etc/ssl/private";
 5 
 path_ssl="/etc/ssl/private";
6 
 path_certbot="/var/lib/dehydrated/certs";
 6 
 path_certbot="/var/lib/dehydrated/certs";
7 
-domains=( "mydomain.ru" "webmail.mydomain.ru" "dev.mydomain.ru" );
7 
+src="/etc/scripts/autocertbot/certbot.conf"
8
8
9 
 function makeSslPem() {
 9 
 function makeSslPem() {
10 
 for ((dmn=0; dmn != ${#domains[@]}; dmn++))
 10 
 for ((dmn=0; dmn != ${#domains[@]}; dmn++))
 
@@ -14,6 +14,7 @@ for ((dmn=0; dmn != ${#domains[@]}; dmn++))
14 
     cat $path_certbot/${domains[$dmn]}/fullchain.pem >> $path_ssl/${domains[$dmn]}.pem;
 14 
     cat $path_certbot/${domains[$dmn]}/fullchain.pem >> $path_ssl/${domains[$dmn]}.pem;
15 
     cat $path_certbot/${domains[$dmn]}/privkey.pem >> $path_ssl/${domains[$dmn]}.pem;
 15 
     cat $path_certbot/${domains[$dmn]}/privkey.pem >> $path_ssl/${domains[$dmn]}.pem;
16 
 done
 16 
 done
17 
+makePemList;
17 
 }
 18 
 }
18
19
19 
 function makePemList() {
 20 
 function makePemList() {
 
@@ -24,8 +25,21 @@ for ((icrt=0; icrt != ${#domains[@]}; icrt++))
24 
 done
 25 
 done
25 
 }
 26 
 }
26
27
28 
+function checkCert() {
29 
+if [ $(dehydrated -c -4|grep 'Certificate will not expire'|wc -l) != 0 ];
30 
+    then
31 
+        echo "$(date +%c) certbot(dehydrated): no certificates to upgrade...">>$logfile;
32 
+        exit;
33 
+    else
34 
+        makeSslPem;
35 
+        /etc/init.d/haproxy restart;
36 
+        echo "$(date +%c) certbot(dehydrated): updating sertificate">>$logfile;
37 
+fi
38 
+}
39 
+
40 
+
41 
+
27 
 ## create sets.pem
 42 
 ## create sets.pem
28 
-makeSslPem;
29 
-makePemList;
43 
+checkCert;
30
44
31
45

+ 0 - 15
dehydrated/renew-ssl.sh
View File 

@@ -1,15 +0,0 @@
1 
-#!/bin/bash
2 
-#
3 
-# renew certbot ssl certificates
4 
-#
5 
-logfile="/var/log/syslog";
6 
-
7 
-if [ $(dehydrated -c -4|grep 'Certificate will not expire'|wc -l) != 0 ];
8 
-    then
9 
-	echo "$(date +%c) certbot(dehydrated): no certificates to upgrade...">>$logfile;
10 
-	exit;
11 
-    else
12 
-	/etc/scripts/sertbot/dehydrated/make_ssl-dehydrated.sh;
13 
-	/etc/init.d/haproxy restart;
14 
-	echo "$(date +%c) certbot(dehydrated): updating sertificate">>$logfile;
15 
-fi