bingen
/
rpi_docker_home_server
Observar 1
Favorito 0
Fork 0
Código Issues 0 Pull requests 0 Versões 0 Wiki Atividade
Você não pode selecionar mais de 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
90 Commits
6 Branches
Tag: e6aa04eaa7
Branches Tags
${ item.name }
Criar branch ${ searchTerm }
de e6aa04eaa7
${ noResults }
rpi_docker_home_server/images/haproxy/startup.sh

64 linhas
2.1KB
Original Anotar Histórico 

  1. #!/bin/bash

  2. 

  3. CFG_FILE=/etc/haproxy/haproxy.cfg

  4. CFG_LE_FILE=/etc/haproxy/haproxy_letsencrypt.cfg

  5. LETSENCRYPT_PORT=8888

  6. 

  7. mkdir -p /etc/letsencrypt/haproxy

  8. 

  9. # Let's Encrypt

  10. 

  11. # Following these instructions:

  12. # https://serversforhackers.com/c/letsencrypt-with-haproxy

  13. 

  14. # Start temporary HAProxy

  15. haproxy -f $CFG_LE_FILE -D -p /tmp/haproxy.pid

  16. 

  17. # Get Let's Encrypt certificates

  18. HAPROXY_CERTS=""

  19. SERVER_NAMES="${NEXTCLOUD_SERVER_NAME} ${GITEA_SERVER_NAME} ${BLOG_1_SERVER_NAME} ${HAUK_SERVER_NAME}"

  20. #echo Server names: $SERVER_NAMES

  21. for domain in ${DOMAINS}; do

  22.     for server_name in ${SERVER_NAMES}; do

  23.         _URL=${server_name}.${domain};

  24.         echo ${_URL}

  25.         HAPROXY_CERTS="${HAPROXY_CERTS} crt /etc/letsencrypt/haproxy/${_URL}.pem";

  26.         if [[ ! -s /etc/letsencrypt/haproxy/${_URL}.pem ]]; then

  27.             # Query Let's Encrypt

  28.             certbot certonly -d ${_URL} \

  29.                     --email ${ADMIN_EMAIL} --non-interactive --agree-tos \

  30.                     --standalone --http-01-port=${LETSENCRYPT_PORT}

  31.             if [ $? -eq 0 ]; then

  32.                 cat /etc/letsencrypt/live/${_URL}/fullchain.pem \

  33.                     /etc/letsencrypt/live/${_URL}/privkey.pem \

  34.                     > /etc/letsencrypt/haproxy/${_URL}.pem

  35.             fi

  36.         fi

  37.     done

  38. done

  39. 

  40. #sed -i "s/\${NEXTCLOUD_URL}/${NEXTCLOUD_URL}/g" $CFG_FILE

  41. #sed -i "s/\${GITEA_URL}/${GITEA_URL}/g" $CFG_FILE

  42. sed -i "s/\${NEXTCLOUD_SERVER_NAME}/${NEXTCLOUD_SERVER_NAME}/g" $CFG_FILE

  43. sed -i "s/\${GITEA_SERVER_NAME}/${GITEA_SERVER_NAME}/g" $CFG_FILE

  44. sed -i "s/\${BLOG_1_SERVER_NAME}/${BLOG_1_SERVER_NAME}/g" $CFG_FILE

  45. sed -i "s/\${HAUK_SERVER_NAME}/${HAUK_SERVER_NAME}/g" $CFG_FILE

  46. #echo sed -i "s/\${HAPROXY_CERTS}/${HAPROXY_CERTS}/g" ${CFG_FILE}

  47. sed -i "s/\${HAPROXY_CERTS}/${HAPROXY_CERTS//\//\\/}/g" ${CFG_FILE}

  48. 

  49. #cat ${CFG_FILE}

  50. 

  51. echo Killing haproxy `cat /tmp/haproxy.pid`

  52. kill -SIGTERM `cat /tmp/haproxy.pid`

  53. rm /tmp/haproxy.pid

  54. 

  55. # Create renew cron job

  56. mv /usr/local/bin/letsencrypt.cron /etc/cron.weekly/letsencrypt

  57. # remove default cron job

  58. mv /etc/cron.d/certbot /tmp

  59. 

  60. service cron status || service cron start

  61. 

  62. # Start HAProxy

  63. haproxy -f $CFG_FILE