forked from evolix/ansible-roles
evoacme: add basic check to evoacme.sh
This commit is contained in:
parent
ab177c2dad
commit
069e675c6b
|
@ -7,6 +7,15 @@
|
||||||
# Licence: AGPLv3
|
# Licence: AGPLv3
|
||||||
#
|
#
|
||||||
|
|
||||||
|
usage() {
|
||||||
|
echo "Usage: $0 NAME"
|
||||||
|
echo ""
|
||||||
|
echo "NAME must be correspond to :"
|
||||||
|
echo "- a CSR in ${CSR_DIR}/NAME.csr"
|
||||||
|
echo "- a KEY in ${SSL_KEY_DIR}/NAME.key"
|
||||||
|
echo ""
|
||||||
|
}
|
||||||
|
|
||||||
mkconf_apache() {
|
mkconf_apache() {
|
||||||
[ -f "/etc/apache2/ssl/${vhost}.conf" ] && sed -i "s~^SSLCertificateFile.*$~SSLCertificateFile $CRT_DIR/${vhost}/live/fullchain.pem~" "/etc/apache2/ssl/${vhost}.conf"
|
[ -f "/etc/apache2/ssl/${vhost}.conf" ] && sed -i "s~^SSLCertificateFile.*$~SSLCertificateFile $CRT_DIR/${vhost}/live/fullchain.pem~" "/etc/apache2/ssl/${vhost}.conf"
|
||||||
apache2ctl -t 2>/dev/null && service apache2 reload
|
apache2ctl -t 2>/dev/null && service apache2 reload
|
||||||
|
@ -25,13 +34,6 @@ mkconf_haproxy() {
|
||||||
}
|
}
|
||||||
|
|
||||||
main() {
|
main() {
|
||||||
vhost=$(basename "$1" .conf)
|
|
||||||
|
|
||||||
# Check master status for evoadmin-cluster
|
|
||||||
if [ -f "/home/${vhost}/state" ]; then
|
|
||||||
grep -q "STATE=master" "/home/${vhost}/state" || exit 0
|
|
||||||
fi
|
|
||||||
|
|
||||||
[ -f /etc/default/evoacme ] && . /etc/default/evoacme
|
[ -f /etc/default/evoacme ] && . /etc/default/evoacme
|
||||||
[ -z "${SSL_KEY_DIR}" ] && SSL_KEY_DIR='/etc/ssl/private'
|
[ -z "${SSL_KEY_DIR}" ] && SSL_KEY_DIR='/etc/ssl/private'
|
||||||
[ -z "${CRT_DIR}" ] && CRT_DIR='/etc/letsencrypt'
|
[ -z "${CRT_DIR}" ] && CRT_DIR='/etc/letsencrypt'
|
||||||
|
@ -40,6 +42,15 @@ main() {
|
||||||
[ -z "${DH_DIR}" ] && DH_DIR='/etc/ssl/dhparam'
|
[ -z "${DH_DIR}" ] && DH_DIR='/etc/ssl/dhparam'
|
||||||
[ -z "${LOG_DIR}" ] && LOG_DIR='/var/log/evoacme'
|
[ -z "${LOG_DIR}" ] && LOG_DIR='/var/log/evoacme'
|
||||||
|
|
||||||
|
[ "$#" -ne 1 ] && usage && exit 1
|
||||||
|
|
||||||
|
vhost=$(basename "$1" .conf)
|
||||||
|
|
||||||
|
# Check master status for evoadmin-cluster
|
||||||
|
if [ -f "/home/${vhost}/state" ]; then
|
||||||
|
grep -q "STATE=master" "/home/${vhost}/state" || exit 0
|
||||||
|
fi
|
||||||
|
|
||||||
SSL_EMAIL=$(grep emailAddress "${CRT_DIR}/openssl.cnf"|cut -d'=' -f2|xargs)
|
SSL_EMAIL=$(grep emailAddress "${CRT_DIR}/openssl.cnf"|cut -d'=' -f2|xargs)
|
||||||
if [ -n "$SSL_EMAIL" ]; then
|
if [ -n "$SSL_EMAIL" ]; then
|
||||||
emailopt="-m $SSL_EMAIL"
|
emailopt="-m $SSL_EMAIL"
|
||||||
|
|
Loading…
Reference in a new issue