[Letsencrypt-devel] Bug#824223: letsencrypt.sh: Provide more automatism for letsencrypt.sh

SJ Zhu zsj950618 at gmail.com
Sun Jan 8 11:38:23 UTC 2017


How about add a systemd service like certbot?

A modified version from certbot package:

/lib/systemd/system/letsencrypt.sh.service

[Unit]
Description=letsencrypt.sh
Documentation=file:///usr/share/doc/letsencrypt.sh/README.Debian
[Service]
Type=oneshot
ExecStart=/usr/bin/letsencrypt.sh -c
PrivateTmp=true

/lib/systemd/system/letsencrypt.sh.timer

[Unit]
Description=Run letsencrypt.sh twice daily

[Timer]
OnCalendar=*-*-* 00,12:00:00
RandomizedDelaySec=3600
Persistent=true

[Install]
WantedBy=timers.target


On Fri, 13 May 2016 22:28:30 +0200 Cord Beermann <cord at debian.org> wrote:
> Package: letsencrypt.sh
> Version: 0.1.0-2
> Severity: wishlist
>
> I continue the discussion from Bug#822493 here:
>
> Please provide a cron based automatism for refreshing certificates.
>
> It would be nice that users only need to provide the hostname(s) they
> want to get a certificate for in /etc/letsencrypt.sh/ and a cronjob
> that runs letsencrypt.sh -c takes care for refreshing it before it expires.
>
> That script would also need hooks to reload daemons that need to know
> about a certificate-change.
>
> Debconf could ask if automatic refresh is activated.
>
> Cord
>
>



More information about the Letsencrypt-devel mailing list