Mercurial Hosting > luan
diff host/renewSsl.sh @ 2037:a4435e2e3417 acme-tiny
Edit scripts to use acme-tiny
| author | Violet7 |
|---|---|
| date | Sat, 08 Nov 2025 04:29:49 -0800 |
| parents | 27a2530f04b6 |
| children |
line wrap: on
line diff
--- a/host/renewSsl.sh Wed Nov 05 21:49:39 2025 -0800 +++ b/host/renewSsl.sh Sat Nov 08 04:29:49 2025 -0800 @@ -1,9 +1,32 @@ #!/bin/bash -cd "$1"; +cd "$1" || exit 1 +ROOTPWD=$(pwd) -ROOTPWD=$(pwd); +for SITEROOT in "$ROOTPWD"/sites/*; do + # Skip if not a directory + [ -d "$SITEROOT" ] || continue + + DOMAIN=$(basename "$SITEROOT") + echo "Processing domain: $DOMAIN" + + mkdir -p "$SITEROOT/site/.well-known/acme-challenge" -./acme.sh --renew-all --cert-home "$ROOTPWD"/sites --config-home "$ROOTPWD"/local/letsencrypt/config; + python3 "$ROOTPWD/acme_tiny.py" \ + --account-key "$ROOTPWD/local/tiny_account.key" \ + --csr "$SITEROOT/$DOMAIN.csr" \ + --acme-dir "$SITEROOT/site/.well-known/acme-challenge" \ + > "/tmp/$DOMAIN.crt" -sudo /usr/local/bin/nginx -s reload; + # check if exists + if [ -f "$SITEROOT/fullchain.cer" ]; then + mv "$SITEROOT/fullchain.cer" "$SITEROOT/fullchain.cer.old" + fi + + mv "/tmp/$DOMAIN.crt" "$SITEROOT/fullchain.cer" + + echo "Renewed certificate for $DOMAIN" +done + +sudo /usr/local/bin/nginx -s reload +echo "Nginx reloaded."