]> git.openstreetmap.org Git - chef.git/blob - cookbooks/letsencrypt/templates/default/request.erb
projects / chef.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
letsencrypt: ensure request script runs as correct user
[chef.git] / cookbooks / letsencrypt / templates / default / request.erb
1 #!/bin/sh
2
3 # DO NOT EDIT - This file is being maintained by Chef
4
5 if [ "$(id -un)" != "letsencrypt" ]; then
6     echo "Error: This script must be run as user letsencrypt" >&2
7     exit 1
8 fi
9
10 /usr/bin/certbot certonly \
11     --non-interactive \
12     --config-dir /srv/acme.openstreetmap.org/config \
13     --work-dir /srv/acme.openstreetmap.org/work \
14     --logs-dir /srv/acme.openstreetmap.org/logs \
15     --email operations@osmfoundation.org \
16     --agree-tos \
17     --expand \
18     --renew-with-new-domains \
19     --cert-name <%= @domains.first %> \
20 <% @domains.each do |domain| -%>
21     --domain <%= domain %> \
22 <% end -%>
23     --webroot \
24     --webroot-path /srv/acme.openstreetmap.org/html \
25     --deploy-hook /srv/acme.openstreetmap.org/bin/deploy-hook
Chef configuration management public repo for configuring & maintaining the OpenStreetMap servers.