From af52ddef96e0b71db990340a055f977734b57ec2 Mon Sep 17 00:00:00 2001
From: Kevin McDonald <k3vmcd@gmail.com>
Date: Sun, 23 Jul 2017 09:14:56 -0600
Subject: [PATCH] Allow user to set certificate storage location

---
 templates/rancher-lets-encrypt/0/docker-compose.yml  | 2 +-
 templates/rancher-lets-encrypt/0/letsencrypt.env     | 1 +
 templates/rancher-lets-encrypt/0/rancher-compose.yml | 8 ++++++++
 3 files changed, 10 insertions(+), 1 deletion(-)

diff --git a/templates/rancher-lets-encrypt/0/docker-compose.yml b/templates/rancher-lets-encrypt/0/docker-compose.yml
index cf19769..ce01b94 100644
--- a/templates/rancher-lets-encrypt/0/docker-compose.yml
+++ b/templates/rancher-lets-encrypt/0/docker-compose.yml
@@ -23,7 +23,7 @@ services:
       - HOST_CHECK_LOOP_TIME=${HOST_CHECK_LOOP_TIME}
     volumes:
       - letsencrypt-verify:${CERTBOT_WEBROOT}
-      - letsencrypt-certs:/etc/letsencrypt/
+      - ${CERT_VOLUME}:/etc/letsencrypt/
     labels:
       # if we add the container as a rancher agent, we get magical things like Rancher server URL, and access keys for F-R-E-E!
       io.rancher.container.create_agent: 'true'
diff --git a/templates/rancher-lets-encrypt/0/letsencrypt.env b/templates/rancher-lets-encrypt/0/letsencrypt.env
index 90fefa8..1c27682 100644
--- a/templates/rancher-lets-encrypt/0/letsencrypt.env
+++ b/templates/rancher-lets-encrypt/0/letsencrypt.env
@@ -7,3 +7,4 @@ LOOP_TIME=300
 STAGING=True
 HOST_CHECK_PORT=80
 HOST_CHECK_LOOP_TIME=10
+CERT_VOLUME=letsencrypt-certs
diff --git a/templates/rancher-lets-encrypt/0/rancher-compose.yml b/templates/rancher-lets-encrypt/0/rancher-compose.yml
index 7bd9f2d..a3649bb 100644
--- a/templates/rancher-lets-encrypt/0/rancher-compose.yml
+++ b/templates/rancher-lets-encrypt/0/rancher-compose.yml
@@ -61,6 +61,14 @@ catalog:
       required: true
       default: 10
       type: int
+    - variable: CERT_VOLUME
+      label: Location to store certificates
+      description: |
+        Docker volume or host bind mount location to store the certificates retrieved by the letsencrypt service.
+        E.g: Docker volume example: 'letsencrypt-certs' or 'ssl-certificates'. Host bind mount example: '/etc/letsencrypt/' or '/dockerdata/letsencrypt/'.
+      required: true
+      default: letsencrypt-certs
+      type: string
 
 services:
   letsencrypt-nginx: