Skip to content

Latest commit

 

History

History
26 lines (17 loc) · 1.26 KB

README.md

File metadata and controls

26 lines (17 loc) · 1.26 KB
Raw

Shellcheck

Cron for SSL/TLS certificate renewal via acme.sh

This shell scipt is intended for usage in /etc/cron.monthly or /etc/cron.weekly scenarios.

Requirements

  1. acme.sh should be installed
  2. web server should be already configured for serving https

Environment variables

  • MONITORING_URL — should be pointing to your cron monitoring webhook (e.g. Cronitor).
  • COMMON_NAME — hostname which the certificate should be issued for.
  • EC_CURVE — private key elliptic curve.

Notes

  1. If you prefer a CA other than LE, go ahead and adjust the sign_csr function, the --server parameter.
  2. In case you plan to use RSA keys, go ahead and adjust the generate_new_key function.
  3. If you use other server than nginx, go ahead and update the restart hooks.
  4. If you are not going to use cron monitoring via webhooks, go ahead and remove the calls from the code.

Credits