Mercurial Hosting > luan
comparison host/renewSsl.sh @ 2037:a4435e2e3417 acme-tiny
Edit scripts to use acme-tiny
| author | Violet7 |
|---|---|
| date | Sat, 08 Nov 2025 04:29:49 -0800 |
| parents | 27a2530f04b6 |
| children |
comparison
equal
deleted
inserted
replaced
| 2036:2740f8a9ba3a | 2037:a4435e2e3417 |
|---|---|
| 1 #!/bin/bash | 1 #!/bin/bash |
| 2 | 2 |
| 3 cd "$1"; | 3 cd "$1" || exit 1 |
| 4 ROOTPWD=$(pwd) | |
| 4 | 5 |
| 5 ROOTPWD=$(pwd); | 6 for SITEROOT in "$ROOTPWD"/sites/*; do |
| 7 # Skip if not a directory | |
| 8 [ -d "$SITEROOT" ] || continue | |
| 6 | 9 |
| 7 ./acme.sh --renew-all --cert-home "$ROOTPWD"/sites --config-home "$ROOTPWD"/local/letsencrypt/config; | 10 DOMAIN=$(basename "$SITEROOT") |
| 11 echo "Processing domain: $DOMAIN" | |
| 8 | 12 |
| 9 sudo /usr/local/bin/nginx -s reload; | 13 mkdir -p "$SITEROOT/site/.well-known/acme-challenge" |
| 14 | |
| 15 python3 "$ROOTPWD/acme_tiny.py" \ | |
| 16 --account-key "$ROOTPWD/local/tiny_account.key" \ | |
| 17 --csr "$SITEROOT/$DOMAIN.csr" \ | |
| 18 --acme-dir "$SITEROOT/site/.well-known/acme-challenge" \ | |
| 19 > "/tmp/$DOMAIN.crt" | |
| 20 | |
| 21 # check if exists | |
| 22 if [ -f "$SITEROOT/fullchain.cer" ]; then | |
| 23 mv "$SITEROOT/fullchain.cer" "$SITEROOT/fullchain.cer.old" | |
| 24 fi | |
| 25 | |
| 26 mv "/tmp/$DOMAIN.crt" "$SITEROOT/fullchain.cer" | |
| 27 | |
| 28 echo "Renewed certificate for $DOMAIN" | |
| 29 done | |
| 30 | |
| 31 sudo /usr/local/bin/nginx -s reload | |
| 32 echo "Nginx reloaded." |