nginx-certbot/scripts/run_certbot.sh

38 lines
957 B
Bash
Raw Normal View History

2016-09-21 23:35:19 +00:00
echo "Running certbot for domains $DOMAINS"
# build arg string
args=""
if [ $WEBROOT ]
then
args=" --webroot -w $WEBROOT"
else
args=" --standalone --standalone-supported-challenges
http-01"
fi
2016-09-21 01:12:59 +00:00
for d in $DOMAINS
do
2016-09-21 23:35:19 +00:00
args=$args" -d $d"
done
certbot --agree-tos --renew-by-default\
--text --server https://acme-v01.api.letsencrypt.org/directory\
--email $EMAIL certonly $args
ec=$?
echo "certbot exit code $ec"
if [ $ec -eq 0 ]
then
2016-09-21 01:12:59 +00:00
if $CONCAT
then
# concat the full chain with the private key (e.g. for haproxy)
cat /etc/letsencrypt/live/$d/fullchain.pem /etc/letsencrypt/live/$d/privkey.pem > /certs/$d.pem
else
# keep full chain and private key in separate files (e.g. for nginx and apache)
cp /etc/letsencrypt/live/$d/fullchain.pem /certs/$d.pem
cp /etc/letsencrypt/live/$d/privkey.pem /certs/$d.key
fi
2016-09-21 23:35:19 +00:00
echo "Success! Your new certificates are in /certs/"
else
echo "Cerbot failed. Check the logs for details."
fi