kazu634
/
itamae
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
itamae/cookbooks/statup/ssl.rb

24 lines
744 B
Ruby
Raw Blame History

[
'rm -f /etc/nginx/sites-enabled/*',
'ln -f -s /etc/nginx/sites-available/maintenance /etc/nginx/sites-enabled/maintenance',
'systemctl reload nginx',
"test -e /etc/letsencrypt/live/#{node['statup']['FQDN']}/cert.pem || certbot certonly --webroot -d #{node['statup']['FQDN']} --webroot-path /usr/share/nginx/html/ --email simoom634@yahoo.co.jp --agree-tos -n",
'/home/webadm/bin/nginx-config.sh',
].each do |cmd|
execute cmd
end
remote_file "/etc/letsencrypt/live/#{node['statup']['FQDN']}/dhparams_4096.pem" do
owner 'root'
group 'root'
mode '644'
end
execute "openssl rand 48 > /etc/letsencrypt/live/#{node['statup']['FQDN']}/ticket.key"
remote_file '/etc/cron.d/statup' do
user 'root'
group 'root'
mode '644'
end
Reference in New Issue View Git Blame Copy Permalink