aboutsummaryrefslogtreecommitdiffstats
path: root/roles/certbot/files/etc/pki/tls/certbot-post.sh
diff options
context:
space:
mode:
Diffstat (limited to 'roles/certbot/files/etc/pki/tls/certbot-post.sh')
-rw-r--r--roles/certbot/files/etc/pki/tls/certbot-post.sh40
1 files changed, 40 insertions, 0 deletions
diff --git a/roles/certbot/files/etc/pki/tls/certbot-post.sh b/roles/certbot/files/etc/pki/tls/certbot-post.sh
new file mode 100644
index 0000000..b39ef67
--- /dev/null
+++ b/roles/certbot/files/etc/pki/tls/certbot-post.sh
@@ -0,0 +1,40 @@
+#!/bin/bash
+
+exec 1> >(logger -s -t $(basename "$0")) 2>&1
+
+usage() {
+ echo "$0 -c CERT_PATH -k KEY_PATH [-o OWNER] [-m MODE] [POST_COMMAND ...]"
+ exit 1
+}
+
+OWNER=root:root
+MODE=400
+
+while getopts ':c:k:m:o:' opt; do
+ case $opt in
+ c) CERT_PATH=$OPTARG ;;
+ k) KEY_PATH=$OPTARG ;;
+ m) MODE=$OPTARG ;;
+ o) OWNER=$OPTARG ;;
+ *) usage ;;
+ esac
+done
+
+shift $((OPTIND-1))
+
+if [ -z "$CERT_PATH" -o -z "$KEY_PATH" ]; then
+ usage
+fi
+
+OWNER_USER=${OWNER%:*}
+OWNER_GROUP=${OWNER#*:}
+OWNER_GROUP=${OWNER_GROUP:-$OWNER_USER}
+
+install -v -m "$MODE" -o "${OWNER_USER}" -g "${OWNER_GROUP}" "${RENEWED_LINEAGE}/fullchain.pem" "$CERT_PATH"
+install -v -m "$MODE" -o "${OWNER_USER}" -g "${OWNER_GROUP}" "${RENEWED_LINEAGE}/privkey.pem" "$KEY_PATH"
+
+# run post-command
+if (($#)); then
+ echo "running post-command: $*"
+ "$@"
+fi
generated by cgit (git 2.34.1) at 2024-09-19 11:56:20 -0400