env/nginx/certbot-renew

#!/bin/bash
die() { echo >&2 "$@" ; exit 1 ; }

DIRNAME="$(dirname $0)"
cd "$DIRNAME"

source ../env.production
source ./env.production

domain_args="-d $DOMAIN_NAME,$KEYCLOAK_HOSTNAME,$HEDGEDOC_HOSTNAME,$MASTODON_HOSTNAME,$NEXTCLOUD_HOSTNAME,$GRAFANA_HOSTNAME,$MATRIX_HOSTNAME,$GITEA_HOSTNAME"
rsa_key_size=2048

set -x

# move the temp live directory away if
# this is the first time we've run anything here
if [ ! -d "../data/certbot/conf/accounts" ]; then
	echo "deleting temp keys"
	rm -rf ../data/certbot/conf/live
fi

docker-compose run --rm certbot \
  certonly \
    --webroot \
    --webroot-path /var/www/certbot \
    --email "admin@$DOMAIN_NAME" \
    --rsa-key-size "$rsa_key_size" \
    --agree-tos \
    --no-eff-email \
    --force-renewal \
    $domain_args \
|| die "unable to renew!"

docker-compose exec nginx nginx -s reload
certbot: renew works 3 years ago			`#!/bin/bash`
nginx: rework directory so that certbot works 3 years ago			`die() { echo >&2 "$@" ; exit 1 ; }`

nginx renewal fixes, oauth mastodon setup, secret restructure, etc 3 years ago			`DIRNAME="$(dirname $0)"`
			`cd "$DIRNAME"`

certbot: renew works 3 years ago			`source ../env.production`
			`source ./env.production`

gitea: rework setup for new file layout 3 years ago			`domain_args="-d $DOMAIN_NAME,$KEYCLOAK_HOSTNAME,$HEDGEDOC_HOSTNAME,$MASTODON_HOSTNAME,$NEXTCLOUD_HOSTNAME,$GRAFANA_HOSTNAME,$MATRIX_HOSTNAME,$GITEA_HOSTNAME"`
certbot: renew works 3 years ago			`rsa_key_size=2048`

			`set -x`

nginx renewal fixes, oauth mastodon setup, secret restructure, etc 3 years ago			`# move the temp live directory away if`
			`# this is the first time we've run anything here`
data: relocate all data volumes to separate directory 3 years ago			`if [ ! -d "../data/certbot/conf/accounts" ]; then`
nginx renewal fixes, oauth mastodon setup, secret restructure, etc 3 years ago			`echo "deleting temp keys"`
data: relocate all data volumes to separate directory 3 years ago			`rm -rf ../data/certbot/conf/live`
nginx renewal fixes, oauth mastodon setup, secret restructure, etc 3 years ago			`fi`
nginx: rework directory so that certbot works 3 years ago
certbot: renew works 3 years ago			`docker-compose run --rm certbot \`
nginx renewal fixes, oauth mastodon setup, secret restructure, etc 3 years ago			`certonly \`
			`--webroot \`
			`--webroot-path /var/www/certbot \`
renew: include top level domain name 3 years ago			`--email "admin@$DOMAIN_NAME" \`
nginx renewal fixes, oauth mastodon setup, secret restructure, etc 3 years ago			`--rsa-key-size "$rsa_key_size" \`
certbot: renew works 3 years ago			`--agree-tos \`
nginx: rework directory so that certbot works 3 years ago			`--no-eff-email \`
renew: include top level domain name 3 years ago			`--force-renewal \`
			`$domain_args \`
			`\|\| die "unable to renew!"`

			`docker-compose exec nginx nginx -s reload`