ansible-roles/letsencrypt-acmetool-client/templates/acme-cert-request.sh.j2

#!/bin/bash

TMP_DIR=/var/tmp/acmetool
BASE_DIR=/var/lib/acme
RETVAL=

if [ -d $BASE_DIR/keys/fakeselfsignedcert -a -d $BASE_DIR/certs/fakeselfsignedcert ] ; then
    mkdir -p $TMP_DIR/{keys,certs}
    mv $BASE_DIR/keys/fakeselfsignedcert $TMP_DIR/keys
    mv $BASE_DIR/certs/fakeselfsignedcert $TMP_DIR/certs
    /bin/rm live/{{ ansible_fqdn }}
    {{ letsencrypt_acme_command }} {{ letsencrypt_acme_command_opts }} quickstart
fi

{{ letsencrypt_acme_command }} {{ letsencrypt_acme_command_opts }} reconcile
RETVAL=$?

if [ -d $TMP_DIR ] ; then
    if [ $RETVAL -ne 0 ] ; then
        mv $TMP_DIR/keys/fakeselfsignedcert $BASE_DIR/keys
        mv $TMP_DIR/certs/fakeselfsignedcert $BASE_DIR/certs
        cd $BASE_DIR/live
        ln -s ../certs/fakeselfsignedcert {{ ansible_fqdn }}
    fi
    rm -fr $TMP_DIR
fi

exit $RETVAL
library/roles/letsencrypt-acmetool-client: Fix the initialization procedure. library/roles/ubuntu-deb-general/tasks/pki-basics.yml: A link to the fullchain was missing. 2016-05-06 13:22:34 +02:00			`#!/bin/bash`

			`TMP_DIR=/var/tmp/acmetool`
			`BASE_DIR=/var/lib/acme`
			`RETVAL=`

			`if [ -d $BASE_DIR/keys/fakeselfsignedcert -a -d $BASE_DIR/certs/fakeselfsignedcert ] ; then`
			`mkdir -p $TMP_DIR/{keys,certs}`
			`mv $BASE_DIR/keys/fakeselfsignedcert $TMP_DIR/keys`
			`mv $BASE_DIR/certs/fakeselfsignedcert $TMP_DIR/certs`
			`/bin/rm live/{{ ansible_fqdn }}`
			`{{ letsencrypt_acme_command }} {{ letsencrypt_acme_command_opts }} quickstart`
			`fi`

			`{{ letsencrypt_acme_command }} {{ letsencrypt_acme_command_opts }} reconcile`
			`RETVAL=$?`

			`if [ -d $TMP_DIR ] ; then`
			`if [ $RETVAL -ne 0 ] ; then`
			`mv $TMP_DIR/keys/fakeselfsignedcert $BASE_DIR/keys`
			`mv $TMP_DIR/certs/fakeselfsignedcert $BASE_DIR/certs`
			`cd $BASE_DIR/live`
			`ln -s ../certs/fakeselfsignedcert {{ ansible_fqdn }}`
			`fi`
			`rm -fr $TMP_DIR`
			`fi`

			`exit $RETVAL`