bingen
/
rpi_docker_home_server
Obserwuj 1
Polub 0
Forkuj 0
Kod Zgłoszenia 0 Oczekujące zmiany 0 Wydania 0 Wiki Aktywność
Nie możesz wybrać więcej, niż 25 tematów Tematy muszą się zaczynać od litery lub cyfry, mogą zawierać myślniki ('-') i mogą mieć do 35 znaków.
79 Commity
6 Gałęzie
Drzewo: 67798f598f
Gałęzie Tagi
${ item.name }
Utwórz gałąź ${ searchTerm }
z '67798f598f'
${ noResults }
rpi_docker_home_server/images/haproxy/startup.sh

60 lines
1.9KB
Czysty Wina Historia 

  1. #!/bin/bash

  2. 

  3. CFG_FILE=/etc/haproxy/haproxy.cfg

  4. CFG_LE_FILE=/etc/haproxy/haproxy_letsencrypt.cfg

  5. LETSENCRYPT_PORT=8888

  6. 

  7. mkdir -p /etc/letsencrypt/haproxy

  8. 

  9. # Let's Encrypt

  10. 

  11. # Following these instructions:

  12. # https://serversforhackers.com/c/letsencrypt-with-haproxy

  13. 

  14. # Start temporary HAProxy

  15. haproxy -f $CFG_LE_FILE -D -p /tmp/haproxy.pid

  16. 

  17. # Get Let's Encrypt certificates

  18. HAPROXY_CERTS=""

  19. for domain in ${DOMAINS}; do

  20.     for server_name in ${NEXTCLOUD_SERVER_NAME} ${GOGS_SERVER_NAME}; do

  21.         _URL=${server_name}.${domain};

  22.         echo ${_URL}

  23.         HAPROXY_CERTS="${HAPROXY_CERTS} crt /etc/letsencrypt/haproxy/${_URL}.pem";

  24.         if [[ ! -s /etc/letsencrypt/haproxy/${_URL}.pem ]]; then

  25.             # Query Let's Encrypt

  26.             certbot certonly -d ${_URL} \

  27.                     --email ${ADMIN_EMAIL} --non-interactive --agree-tos \

  28.                     --standalone --http-01-port=${LETSENCRYPT_PORT}

  29.             if [ $? -eq 0 ]; then

  30.                 cat /etc/letsencrypt/live/${_URL}/fullchain.pem \

  31.                     /etc/letsencrypt/live/${_URL}/privkey.pem \

  32.                     > /etc/letsencrypt/haproxy/${_URL}.pem

  33.             fi

  34.         fi

  35.     done

  36. done

  37. 

  38. #sed -i "s/\${NEXTCLOUD_URL}/${NEXTCLOUD_URL}/g" $CFG_FILE

  39. #sed -i "s/\${GOGS_URL}/${GOGS_URL}/g" $CFG_FILE

  40. sed -i "s/\${NEXTCLOUD_SERVER_NAME}/${NEXTCLOUD_SERVER_NAME}/g" $CFG_FILE

  41. sed -i "s/\${GOGS_SERVER_NAME}/${GOGS_SERVER_NAME}/g" $CFG_FILE

  42. echo sed -i "s/\${HAPROXY_CERTS}/${HAPROXY_CERTS}/g" ${CFG_FILE}

  43. sed -i "s/\${HAPROXY_CERTS}/${HAPROXY_CERTS//\//\\/}/g" ${CFG_FILE}

  44. 

  45. cat ${CFG_FILE}

  46. 

  47. echo Killing haproxy `cat /tmp/haproxy.pid`

  48. kill -SIGTERM `cat /tmp/haproxy.pid`

  49. rm /tmp/haproxy.pid

  50. 

  51. # Create renew cron job

  52. mv /usr/local/bin/letsencrypt.cron /etc/cron.monthly/letsencrypt

  53. # remove default cron job

  54. mv /etc/cron.d/certbot /tmp

  55. 

  56. service cron status || service cron start

  57. 

  58. # Start HAProxy

  59. haproxy -f $CFG_FILE