2020-11-11 05:22:38 +00:00
|
|
|
#!/bin/sh
|
|
|
|
set -eu
|
|
|
|
|
|
|
|
export DO_AUTH_TOKEN={{ DO_AUTH_TOKEN }}
|
|
|
|
echoexec() { echo "Running: $*"; $*; }
|
|
|
|
|
|
|
|
echoexec /usr/local/bin/wraplego.py \
|
|
|
|
--verbose \
|
|
|
|
--legodir "{{ acmedns_syno_updater_certificate_dir }}" \
|
|
|
|
--email "{{ acmedns_syno_updater_email }}" \
|
|
|
|
--domain "{{ acmedns_syno_updater_domain }}" \
|
|
|
|
--authenticator "digitalocean" \
|
|
|
|
|
|
|
|
host="{{ acmedns_syno_updater_syn_user }}@{{ acmedns_syno_updater_syn_server }}"
|
|
|
|
date=$(date +%Y%m%d)
|
|
|
|
tmppath=/tmp/${date}-acme-update
|
|
|
|
scp -r {{ acmedns_syno_updater_certificate_dir }}/certificates $host:$tmppath
|
|
|
|
user="josiah"
|
|
|
|
#
|
|
|
|
# SSH to the remote server and install the certs:
|
|
|
|
#
|
|
|
|
|
|
|
|
echo "$(cat <<ENDSSH
|
|
|
|
|
|
|
|
echo "$(cat <<ENDSUDO
|
|
|
|
|
|
|
|
echo 'Copying files...'
|
|
|
|
cd /usr/syno/etc/ssl
|
|
|
|
if ! test -d /usr/syno/etc/certificate.acme_renew_hook_backup; then
|
|
|
|
cp -r /usr/syno/etc/certificate /usr/syno/etc/certificate.acme_renew_hook_backup
|
|
|
|
fi
|
|
|
|
chown -R root:root "$tmppath"
|
|
|
|
mv $tmppath/{{ acmedns_syno_updater_domain }}.crt /usr/syno/etc/certificate/system/default/fullchain.pem
|
|
|
|
mv $tmppath/{{ acmedns_syno_updater_domain }}.key /usr/syno/etc/certificate/system/default/privkey.pem
|
|
|
|
# fix webdav shit
|
2020-11-11 18:14:16 +00:00
|
|
|
mv $tmppath/httpd-ssl.conf-cipher /var/packages/WebDAVServer/target/etc/httpd/conf/extra
|
2020-11-11 05:22:38 +00:00
|
|
|
cp /usr/syno/etc/certificate/system/default/fullchain.pem /usr/local/etc/certificate/WebDAVServer/webdav/
|
|
|
|
cp /usr/syno/etc/certificate/system/default/privkey.pem /usr/local/etc/certificate/WebDAVServer/webdav/
|
|
|
|
# end fixing webdav shit
|
|
|
|
echo 'Removing temp dir...'
|
|
|
|
rm -rf $tmppath
|
|
|
|
echo 'Reloading webservers...'
|
|
|
|
sudo /usr/syno/sbin/synoservicecfg --reload nginx
|
|
|
|
/var/packages/WebDAVServer/scripts/start-stop-status stop
|
|
|
|
/var/packages/WebDAVServer/scripts/start-stop-status start
|
|
|
|
echo 'Done'
|
|
|
|
|
|
|
|
ENDSUDO
|
|
|
|
)" | sudo su -
|
|
|
|
|
|
|
|
ENDSSH
|
|
|
|
)" | ssh $host
|