17 lines
640 B
Ruby
17 lines
640 B
Ruby
[
|
|
'rm -f /etc/nginx/sites-enabled/*',
|
|
'ln -f -s /etc/nginx/sites-available/maintenance /etc/nginx/sites-enabled/maintenance',
|
|
'systemctl reload nginx',
|
|
"test -e /etc/letsencrypt/live/#{node['blog']['FQDN']}/cert.pem || certbot certonly --webroot -d #{node['blog']['FQDN']} --webroot-path /usr/share/nginx/html/ --email simoom634@yahoo.co.jp --agree-tos -n",
|
|
'/home/webadm/bin/nginx-config.sh',
|
|
].each do |cmd|
|
|
execute cmd
|
|
end
|
|
|
|
remote_file "/etc/letsencrypt/live/#{node['blog']['FQDN']}/dhparams_4096.pem" do
|
|
owner 'root'
|
|
group 'root'
|
|
end
|
|
|
|
execute "openssl rand 48 > /etc/letsencrypt/live/#{node['blog']['FQDN']}/ticket.key"
|