OpenDroneMap-WebODM/nginx/letsencrypt-autogen.sh

#!/bin/bash
__dirname=$(cd $(dirname "$0"); pwd -P)
cd ${__dirname}

hash certbot 2>/dev/null || not_found=true 
if [ $not_found ]; then
	echo "Certbot not found. You need to install certbot to use this script."
	exit 1
fi

if [ "$WO_SSL" = "NO" ] || [ ! -z "$WO_SSL_KEY" ]; then
	echo "SSL not enabled, or manual SSL key specified, exiting."
	exit 1
fi

DOMAIN="${WO_HOST:=$1}"
if [ -z $DOMAIN ]; then
	echo "Usage: $0 <my.domain.com>"
	exit 1
fi

# Stop nginx if needed (free the port used by the standalone server)
nginx_was_running="NO"
pgrep nginx > /dev/null
if [ $? -eq 0 ]; then
	killall nginx
	nginx_was_running="YES"
fi

# Generate/update certificate
certbot certonly --http-01-port 8080 --work-dir ./letsencrypt --config-dir ./letsencrypt --logs-dir ./letsencrypt --standalone -d $DOMAIN --register-unsafely-without-email --agree-tos --keep

# Create ssl dir if necessary
if [ ! -e ssl/ ]; then
	mkdir ssl
fi

# Update symlinks
if [ -e ssl/key.pem ]; then
	rm ssl/key.pem
fi

if [ -e ssl/cert.pem ]; then
	rm ssl/cert.pem
fi

if [ -e "letsencrypt/live/$DOMAIN" ]; then
	ln -vs "../letsencrypt/live/$DOMAIN/privkey.pem" ssl/key.pem
	ln -vs "../letsencrypt/live/$DOMAIN/fullchain.pem" ssl/cert.pem
else
	echo -e "\033[91mWARN: We couldn't automatically generate the SSL certificate. Review the console log. WebODM will likely be inaccessible.\033[39m"
fi

# Restart nginx if necessary
if [ "$nginx_was_running" = "YES" ]; then
	echo "Restarting nginx..."
	nginx -c $(pwd)/nginx-ssl.conf
fi
Lets Encrypt support 2017-11-17 18:42:34 +00:00			`#!/bin/bash`
			`__dirname=$(cd $(dirname "$0"); pwd -P)`
			`cd ${__dirname}`

			`hash certbot 2>/dev/null \|\| not_found=true`
			`if [ $not_found ]; then`
			`echo "Certbot not found. You need to install certbot to use this script."`
			`exit 1`
			`fi`

Added WO_ prefix to env vars 2017-11-17 19:43:06 +00:00			`if [ "$WO_SSL" = "NO" ] \|\| [ ! -z "$WO_SSL_KEY" ]; then`
Lets Encrypt support 2017-11-17 18:42:34 +00:00			`echo "SSL not enabled, or manual SSL key specified, exiting."`
			`exit 1`
			`fi`

Added WO_ prefix to env vars 2017-11-17 19:43:06 +00:00			`DOMAIN="${WO_HOST:=$1}"`
Lets Encrypt support 2017-11-17 18:42:34 +00:00			`if [ -z $DOMAIN ]; then`
			`echo "Usage: $0 <my.domain.com>"`
			`exit 1`
			`fi`

Crontab fix 2017-11-17 20:46:26 +00:00			`# Stop nginx if needed (free the port used by the standalone server)`
			`nginx_was_running="NO"`
Changed script invokation 2017-11-17 21:16:52 +00:00			`pgrep nginx > /dev/null`
Typo 2017-11-17 20:56:18 +00:00			`if [ $? -eq 0 ]; then`
Crontab fix 2017-11-17 20:46:26 +00:00			`killall nginx`
			`nginx_was_running="YES"`
			`fi`

Lets Encrypt support 2017-11-17 18:42:34 +00:00			`# Generate/update certificate`
Update letsencrypt to match current protocol 2019-12-31 05:20:07 +00:00			`certbot certonly --http-01-port 8080 --work-dir ./letsencrypt --config-dir ./letsencrypt --logs-dir ./letsencrypt --standalone -d $DOMAIN --register-unsafely-without-email --agree-tos --keep`
Lets Encrypt support 2017-11-17 18:42:34 +00:00
			`# Create ssl dir if necessary`
			`if [ ! -e ssl/ ]; then`
			`mkdir ssl`
			`fi`

			`# Update symlinks`
			`if [ -e ssl/key.pem ]; then`
			`rm ssl/key.pem`
			`fi`

			`if [ -e ssl/cert.pem ]; then`
			`rm ssl/cert.pem`
			`fi`

			`if [ -e "letsencrypt/live/$DOMAIN" ]; then`
Certbot port fix 2017-11-17 20:18:17 +00:00			`ln -vs "../letsencrypt/live/$DOMAIN/privkey.pem" ssl/key.pem`
Nginx configuration tweak, symlink fix 2017-11-17 20:33:55 +00:00			`ln -vs "../letsencrypt/live/$DOMAIN/fullchain.pem" ssl/cert.pem`
Cert generation warning 2017-11-17 21:41:41 +00:00			`else`
			`echo -e "\033[91mWARN: We couldn't automatically generate the SSL certificate. Review the console log. WebODM will likely be inaccessible.\033[39m"`
Crontab fix 2017-11-17 20:46:26 +00:00			`fi`

			`# Restart nginx if necessary`
			`if [ "$nginx_was_running" = "YES" ]; then`
			`echo "Restarting nginx..."`
			`nginx -c $(pwd)/nginx-ssl.conf`
			`fi`