forked from ISTI-ansible-roles/ansible-roles
38 lines
1019 B
Plaintext
38 lines
1019 B
Plaintext
|
#!/bin/bash
|
||
|
|
||
|
H_NAME=$( hostname -f )
|
||
|
LE_SERVICES_SCRIPT_DIR=/usr/lib/acme/hooks
|
||
|
LE_CERTS_DIR="/var/lib/acme/live/$H_NAME"
|
||
|
LE_LOG_DIR=/var/log/letsencrypt
|
||
|
KIBANA_CERTDIR=/etc/pki/kibana
|
||
|
KIBANA_KEYFILE="$KIBANA_CERTDIR/privkey"
|
||
|
DATE=$( date )
|
||
|
|
||
|
[ ! -d $KIBANA_CERTDIR ] && mkdir -p $KIBANA_CERTDIR
|
||
|
[ ! -d $LE_LOG_DIR ] && mkdir $LE_LOG_DIR
|
||
|
echo "$DATE" >> $LE_LOG_DIR/kibana.log
|
||
|
|
||
|
{% if letsencrypt_acme_install %}
|
||
|
LE_ENV_FILE=/etc/default/letsencrypt
|
||
|
{% endif %}
|
||
|
{% if letsencrypt_acme_sh_install %}
|
||
|
LE_ENV_FILE=/etc/default/acme_sh_request_env
|
||
|
{% endif %}
|
||
|
if [ -f "$LE_ENV_FILE" ] ; then
|
||
|
. "$LE_ENV_FILE"
|
||
|
else
|
||
|
echo "No letsencrypt default file" >> $LE_LOG_DIR/kibana.log
|
||
|
fi
|
||
|
|
||
|
echo "Building the new certificate file" >> $LE_LOG_DIR/kibana.log
|
||
|
cp -f ${LE_CERTS_DIR}/privkey ${KIBANA_KEYFILE}
|
||
|
chmod 440 ${KIBANA_KEYFILE}
|
||
|
chgrp kibana ${KIBANA_KEYFILE}
|
||
|
|
||
|
echo "Reload the kibana service" >> $LE_LOG_DIR/kibana.log
|
||
|
systemctl restart kibana >> $LE_LOG_DIR/kibana.log 2>&1
|
||
|
|
||
|
|
||
|
echo "Done." >> $LE_LOG_DIR/kibana.log
|
||
|
|
||
|
exit 0
|