From e9d04b9993f78e9126c0ac4bee984add5385a73d Mon Sep 17 00:00:00 2001
From: Florian Pritz <bluewind@xinu.at>
Date: Tue, 5 Jan 2016 19:30:57 +0100
Subject: Add certrenew

Signed-off-by: Florian Pritz <bluewind@xinu.at>
---
 certrenew | 34 ++++++++++++++++++++++++++++++++++
 1 file changed, 34 insertions(+)
 create mode 100755 certrenew

(limited to 'certrenew')

diff --git a/certrenew b/certrenew
new file mode 100755
index 0000000..8d696fa
--- /dev/null
+++ b/certrenew
@@ -0,0 +1,34 @@
+#!/bin/bash
+
+set -e
+
+main() {
+	if [[ ! -d /etc/letsencrypt/live ]]; then
+		die "no letsencrypt dir found"
+	fi
+
+	if (($#<2)); then
+		printf "usage: %s <webroot> <domains ...>\n" "${0##*/}"
+		exit 1
+	fi
+
+	local webroot=$1; shift;
+	local -a domains=("$@")
+
+	local cert="/etc/letsencrypt/live/${domains[0]}/cert.pem"
+
+	# renew if expires within 8 weeks
+	if ! openssl x509 -noout -checkend $((8*7*86400)) -in "${cert}"; then
+		letsencrypt certonly --email bluewind@xinu.at --agree-tos --renew-by-default --webroot -w "$webroot" "${domains[@]/#/-d }"
+	fi
+
+	return 0
+}
+
+die() {
+	printf "%s\n" "$1" >&2
+	exit 1
+}
+
+main "$@"
+
-- 
cgit v1.2.3-24-g4f1b