ungleich-public
/
ungleich-certbot
6
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Create directory for certbot / http based root

This commit is contained in:
Nico Schottelius 2022-01-30 21:22:18 +01:00
parent dddcd602f3
commit 43672378fb
3 changed files with 8 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
Dockerfile
View File

@ -1,6 +1,6 @@
FROM nginx:1.21.4-alpine FROM nginx:1.21.4-alpine
RUN mkdir -p /nginx RUN mkdir -p /nginx /www_http
COPY nginx-http-redir.conf /nginx/default.conf COPY nginx-http-redir.conf /nginx/default.conf
# For renewing the certificates # For renewing the certificates

4
nginx-http-redir.conf
View File

@ -3,10 +3,10 @@ server {
listen [::]:80; listen [::]:80;
server_name _; server_name _;
root /var/www/html/; root /www_http;
location /.well-known/acme-challenge/ { location /.well-known/acme-challenge/ {
root /var/www/html; root /www_http;
} }
# Everything else -> ssl # Everything else -> ssl

8
renew_cert.sh
View File

@ -3,9 +3,8 @@
if [ "$NO_NGINX" ]; then if [ "$NO_NGINX" ]; then
/usr/bin/certbot renew --standalone /usr/bin/certbot renew --standalone
else else
/usr/bin/certbot renew --webroot --webroot-path /var/www/html /usr/bin/certbot renew --webroot --webroot-path /www_http
# Reload nginx
pkill -1 nginx
fi fi
# Correct permissions if not told otherwise # Correct permissions if not told otherwise
@ -14,4 +13,7 @@ if [ -z "$LEAVE_PERMISSIONS_AS_IS" ]; then
find /etc/letsencrypt -type f -exec chmod 0644 {} \; find /etc/letsencrypt -type f -exec chmod 0644 {} \;
fi fi
# Reload certs
pkill -1 nginx
echo "Last renew: $(date)" > /tmp/last_renew echo "Last renew: $(date)" > /tmp/last_renew