bingen
/
rpi_docker_home_server
Seguir 1
Destacar 0
Fork 0
Código Incidencias 0 Pull Requests 0 Lanzamientos 0 Wiki Actividad
No puede seleccionar más de 25 temas Los temas deben comenzar con una letra o número, pueden incluir guiones ('-') y pueden tener hasta 35 caracteres de largo.
83 Commits
6 Ramas
Árbol: e5e3c5f2be
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde 'e5e3c5f2be'
${ noResults }
rpi_docker_home_server/images/haproxy/startup.sh

63 líneas
2.0KB
Original Blame Histórico 

  1. #!/bin/bash

  2. 

  3. CFG_FILE=/etc/haproxy/haproxy.cfg

  4. CFG_LE_FILE=/etc/haproxy/haproxy_letsencrypt.cfg

  5. LETSENCRYPT_PORT=8888

  6. 

  7. mkdir -p /etc/letsencrypt/haproxy

  8. 

  9. # Let's Encrypt

  10. 

  11. # Following these instructions:

  12. # https://serversforhackers.com/c/letsencrypt-with-haproxy

  13. 

  14. # Start temporary HAProxy

  15. haproxy -f $CFG_LE_FILE -D -p /tmp/haproxy.pid

  16. 

  17. # Get Let's Encrypt certificates

  18. HAPROXY_CERTS=""

  19. SERVER_NAMES="${NEXTCLOUD_SERVER_NAME} ${GITEA_SERVER_NAME} ${HAUK_SERVER_NAME}"

  20. #echo Server names: $SERVER_NAMES

  21. for domain in ${DOMAINS}; do

  22.     for server_name in ${SERVER_NAMES}; do

  23.         _URL=${server_name}.${domain};

  24.         echo ${_URL}

  25.         HAPROXY_CERTS="${HAPROXY_CERTS} crt /etc/letsencrypt/haproxy/${_URL}.pem";

  26.         if [[ ! -s /etc/letsencrypt/haproxy/${_URL}.pem ]]; then

  27.             # Query Let's Encrypt

  28.             certbot certonly -d ${_URL} \

  29.                     --email ${ADMIN_EMAIL} --non-interactive --agree-tos \

  30.                     --standalone --http-01-port=${LETSENCRYPT_PORT}

  31.             if [ $? -eq 0 ]; then

  32.                 cat /etc/letsencrypt/live/${_URL}/fullchain.pem \

  33.                     /etc/letsencrypt/live/${_URL}/privkey.pem \

  34.                     > /etc/letsencrypt/haproxy/${_URL}.pem

  35.             fi

  36.         fi

  37.     done

  38. done

  39. 

  40. #sed -i "s/\${NEXTCLOUD_URL}/${NEXTCLOUD_URL}/g" $CFG_FILE

  41. #sed -i "s/\${GITEA_URL}/${GITEA_URL}/g" $CFG_FILE

  42. sed -i "s/\${NEXTCLOUD_SERVER_NAME}/${NEXTCLOUD_SERVER_NAME}/g" $CFG_FILE

  43. sed -i "s/\${GITEA_SERVER_NAME}/${GITEA_SERVER_NAME}/g" $CFG_FILE

  44. sed -i "s/\${HAUK_SERVER_NAME}/${HAUK_SERVER_NAME}/g" $CFG_FILE

  45. #echo sed -i "s/\${HAPROXY_CERTS}/${HAPROXY_CERTS}/g" ${CFG_FILE}

  46. sed -i "s/\${HAPROXY_CERTS}/${HAPROXY_CERTS//\//\\/}/g" ${CFG_FILE}

  47. 

  48. #cat ${CFG_FILE}

  49. 

  50. echo Killing haproxy `cat /tmp/haproxy.pid`

  51. kill -SIGTERM `cat /tmp/haproxy.pid`

  52. rm /tmp/haproxy.pid

  53. 

  54. # Create renew cron job

  55. mv /usr/local/bin/letsencrypt.cron /etc/cron.monthly/letsencrypt

  56. # remove default cron job

  57. mv /etc/cron.d/certbot /tmp

  58. 

  59. service cron status || service cron start

  60. 

  61. # Start HAProxy

  62. haproxy -f $CFG_FILE