|
1 year ago | |
---|---|---|
etc/certbot | 1 year ago | |
README.md | 1 year ago | |
certbot_manual | 1 year ago | |
install.sh | 1 year ago |
This is a very simple wrapper that lets you automate certbot manual renewal of certificates as a non privileged user.
git clone https://git.mauras.ch/Various/certbot_manual.git
cd certbot_manual
sudo ./install.sh
sudo cat << EOF > {/usr/local}/etc/sudoers.d/certbot
certbot ALL=(ALL) NOPASSWD:/usr/bin/tee <full_path_of_destination_certificate>.pem
# If you use your certificate in a jail
certbot ALL=(ALL) NOPASSWD:/usr/sbin/jexec * service <service_name> restart
EOF
Configure /etc/certbot/config
then run certbot_manual
from your configured user.
sudo rm -rf /etc/certbot {/usr/local}/etc/sudoers.d/certbot /usr/bin/certbot_manual