forked from ISTI-ansible-roles/ansible-roles
29 lines
839 B
Django/Jinja
29 lines
839 B
Django/Jinja
#!/bin/bash
|
|
|
|
TMP_DIR=/var/tmp/acmetool
|
|
BASE_DIR=/var/lib/acme
|
|
RETVAL=
|
|
|
|
if [ -d $BASE_DIR/keys/fakeselfsignedcert -a -d $BASE_DIR/certs/fakeselfsignedcert ] ; then
|
|
mkdir -p $TMP_DIR/{keys,certs}
|
|
mv $BASE_DIR/keys/fakeselfsignedcert $TMP_DIR/keys
|
|
mv $BASE_DIR/certs/fakeselfsignedcert $TMP_DIR/certs
|
|
/bin/rm $BASE_DIR/live/{{ ansible_fqdn }}
|
|
{{ letsencrypt_acme_command }} {{ letsencrypt_acme_command_opts }} quickstart
|
|
fi
|
|
|
|
{{ letsencrypt_acme_command }} {{ letsencrypt_acme_command_opts }} reconcile
|
|
RETVAL=$?
|
|
|
|
if [ -d $TMP_DIR ] ; then
|
|
if [ $RETVAL -ne 0 ] ; then
|
|
mv $TMP_DIR/keys/fakeselfsignedcert $BASE_DIR/keys
|
|
mv $TMP_DIR/certs/fakeselfsignedcert $BASE_DIR/certs
|
|
cd $BASE_DIR/live
|
|
ln -s ../certs/fakeselfsignedcert {{ ansible_fqdn }}
|
|
fi
|
|
rm -fr $TMP_DIR
|
|
fi
|
|
|
|
exit $RETVAL
|