Permalink
Cannot retrieve contributors at this time
Fetching contributors…
Cannot retrieve contributors at this time
| #!/bin/sh | |
| . $SNAP/utilities/https-utilities | |
| # The number of seconds remaining in the validity of the certificate | |
| # before renewing it. 2592000 seconds is 30 days. | |
| seconds_to_renew=2592000 | |
| while true; do | |
| if [ -f $SELF_SIGNED_CERT ]; then | |
| # Check the self-signed certificate. Does it need to be renewed? | |
| cert_date=$(openssl x509 -noout -enddate -in $SELF_SIGNED_CERT | sed -e 's/.*=\(.*\)$/\1/') | |
| cert_date=$(date -d "$cert_date" "+%s") | |
| current_date=$(date "+%s") | |
| difference=$(($cert_date-$current_date)) | |
| if [ $difference -lt $seconds_to_renew ]; then | |
| echo "Renewing self-signed certificate" | |
| generate_self_signed_certificate | |
| restart_apache_if_running | |
| else | |
| echo "Self-signed certificates aren't due for renewal" | |
| fi | |
| fi | |
| # No need to check the Let's Encrypt certificates-- they'll only | |
| # renew if they're within 30 days of expiration. | |
| run_certbot renew --post-hook "restart-apache" | |
| sleep 1d # Run once a day | |
| done |