safebox/letsencrypt
7
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Added letsencrypt server variable to choose which CA server would use for certify your domain

Browse Source
This commit is contained in:
Gyorgy Berenyi
2022-12-16 13:33:19 +00:00
parent 8e6c875d64
commit e695bff6bd
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
start.letsencrypt.sh
View File

@@ -1,6 +1,7 @@
#!/bin/sh
email=$EMAIL
LETSENCRYPT_SERVER=$LETSENCRYPT_SERVER
sending_error_msg() {
@@ -11,14 +12,14 @@ start_letsencrypt() {
mkdir -p /acme.sh/$DOMAIN/ ;
/usr/local/bin/acme.sh -m $email --issue --standalone --keylength 4096 -d $DOMAIN --cert-file /acme.sh/$DOMAIN/cert.pem --key-file /acme.sh/$DOMAIN/key.pem --fullchain-file /acme.sh/$DOMAIN/fullchain.pem
/usr/local/bin/acme.sh -m $email --server $LETSENCRYPT_SERVER --issue --standalone --keylength 4096 -d $DOMAIN --cert-file /acme.sh/$DOMAIN/cert.pem --key-file /acme.sh/$DOMAIN/key.pem --fullchain-file /acme.sh/$DOMAIN/fullchain.pem
# Check certificate issuer
ISSUER=$(openssl x509 -in /acme.sh/$DOMAIN/fullchain.pem -text -noout |grep -w CN |grep Issuer | cut -d '=' -f2);
SUBJECT=$(openssl x509 -in /acme.sh/$DOMAIN/fullchain.pem -text -noout |grep -w CN |grep Subject | cut -d '=' -f2);
if [ "$ISSUER" == "$SUBJECT" ]; then
echo "Self signed certificate found";
/usr/local/bin/acme.sh -m $email --force --issue --standalone --keylength 4096 -d $DOMAIN --cert-file /acme.sh/$DOMAIN/cert.pem --key-file /acme.sh/$DOMAIN/key.pem --fullchain-file /acme.sh/$DOMAIN/fullchain.pem
/usr/local/bin/acme.sh -m $email --force --server $LETSENCRYPT_SERVER --issue --standalone --keylength 4096 -d $DOMAIN --cert-file /acme.sh/$DOMAIN/cert.pem --key-file /acme.sh/$DOMAIN/key.pem --fullchain-file /acme.sh/$DOMAIN/fullchain.pem
fi
}