certbot: add script for manual deploy hooks execution
All checks were successful
continuous-integration/drone/push Build is passing
All checks were successful
continuous-integration/drone/push Build is passing
This commit is contained in:
parent
51462c724c
commit
11813c31a4
|
@ -12,6 +12,8 @@ The **patch** part changes incrementally at each release.
|
||||||
|
|
||||||
### Added
|
### Added
|
||||||
|
|
||||||
|
* certbot: add script for manual deploy hooks execution
|
||||||
|
|
||||||
### Changed
|
### Changed
|
||||||
|
|
||||||
### Fixed
|
### Fixed
|
||||||
|
|
40
certbot/files/hooks/manual-deploy.sh
Executable file
40
certbot/files/hooks/manual-deploy.sh
Executable file
|
@ -0,0 +1,40 @@
|
||||||
|
#!/bin/sh
|
||||||
|
|
||||||
|
set -u
|
||||||
|
|
||||||
|
error() {
|
||||||
|
>&2 echo "${PROGNAME}: $1"
|
||||||
|
exit 1
|
||||||
|
}
|
||||||
|
debug() {
|
||||||
|
if [ "${VERBOSE}" = "1" ] && [ "${QUIET}" != "1" ]; then
|
||||||
|
>&2 echo "${PROGNAME}: $1"
|
||||||
|
fi
|
||||||
|
}
|
||||||
|
found_renewed_lineage() {
|
||||||
|
test -f "${RENEWED_LINEAGE}/fullchain.pem" && test -f "${RENEWED_LINEAGE}/privkey.pem"
|
||||||
|
}
|
||||||
|
main() {
|
||||||
|
if [ -z "${RENEWED_LINEAGE:-}" ]; then
|
||||||
|
error "Missing RENEWED_LINEAGE environment variable (usually provided by certbot)."
|
||||||
|
fi
|
||||||
|
if [ "${VERBOSE}" = "1" ]; then
|
||||||
|
xargs_verbose="--verbose"
|
||||||
|
else
|
||||||
|
xargs_verbose=""
|
||||||
|
fi
|
||||||
|
if found_renewed_lineage; then
|
||||||
|
find "${hooks_dir}" -mindepth 1 -maxdepth 1 -type f -executable -print0 | sort --zero-terminated --dictionary-order | xargs ${xargs_verbose} --no-run-if-empty --null --max-args=1 sh -c
|
||||||
|
else
|
||||||
|
error "Couldn't find required files in \`${RENEWED_LINEAGE}'"
|
||||||
|
fi
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
PROGNAME=$(basename "$0")
|
||||||
|
VERBOSE=${VERBOSE:-"0"}
|
||||||
|
QUIET=${QUIET:-"0"}
|
||||||
|
|
||||||
|
hooks_dir="/etc/letsencrypt/renewal-hooks/deploy"
|
||||||
|
|
||||||
|
main
|
|
@ -29,6 +29,14 @@
|
||||||
owner: root
|
owner: root
|
||||||
group: root
|
group: root
|
||||||
|
|
||||||
|
- name: Manual deploy hook is present
|
||||||
|
copy:
|
||||||
|
src: hooks/manual-deploy.sh
|
||||||
|
dest: /etc/letsencrypt/renewal-hooks/manual-deploy.sh
|
||||||
|
mode: "0700"
|
||||||
|
owner: root
|
||||||
|
group: root
|
||||||
|
|
||||||
- name: "sync_remote is configured with servers"
|
- name: "sync_remote is configured with servers"
|
||||||
lineinfile:
|
lineinfile:
|
||||||
dest: /etc/letsencrypt/renewal-hooks/deploy/sync_remote.cf
|
dest: /etc/letsencrypt/renewal-hooks/deploy/sync_remote.cf
|
||||||
|
|
Loading…
Reference in a new issue