Ci-dessous, les différences entre deux révisions de la page.
Both sides previous revision Révision précédente Prochaine révision | Révision précédente Dernière révision Both sides next revision | ||
si:acme-dns [2020/03/21 08:25] pitchum [Certificat Wildcard avec dehydrated] |
si:acme-dns [2021/02/24 17:47] pitchum [Certificat Wildcard avec dehydrated] |
||
---|---|---|---|
Ligne 144: | Ligne 144: | ||
"deploy_challenge") | "deploy_challenge") | ||
printf "server %s\nupdate add _acme-challenge.%s. %d in TXT \"%s\"\nsend\n" "${DNSSERVER}" "${2}" "${TTL}" "${4}" | $NSUPDATE | printf "server %s\nupdate add _acme-challenge.%s. %d in TXT \"%s\"\nsend\n" "${DNSSERVER}" "${2}" "${TTL}" "${4}" | $NSUPDATE | ||
- | · | + | ;; |
"clean_challenge") | "clean_challenge") | ||
printf "server %s\nupdate delete _acme-challenge.%s. %d in TXT \"%s\"\nsend\n" "${DNSSERVER}" "${2}" "${TTL}" "${4}" | $NSUPDATE | printf "server %s\nupdate delete _acme-challenge.%s. %d in TXT \"%s\"\nsend\n" "${DNSSERVER}" "${2}" "${TTL}" "${4}" | $NSUPDATE | ||
- | · | + | ;; |
"deploy_cert") | "deploy_cert") | ||
- | # optional: | + | # on concatène le certificat et la clef pour ejabberd. C'est pas obligatoire mais c'est plus simple. |
- | # /path/to/deploy_cert.sh "$@" | + | cat /var/lib/dehydrated/certs/parinux.org/fullchain.pem /var/lib/dehydrated/certs/parinux.org/privkey.pem > /etc/ejabberd/parinux.org.ejabberd.pem |
- | · | + | sudo -u ejabberd ejabberdctl reload_config |
+ | |||
+ | ;; | ||
"unchanged_cert") | "unchanged_cert") | ||
# do nothing for now | # do nothing for now | ||
- | · | + | ;; |
"startup_hook") | "startup_hook") | ||
# do nothing for now | # do nothing for now | ||
- | · | + | ;; |
"exit_hook") | "exit_hook") | ||
# do nothing for now | # do nothing for now | ||
- | · | + | ;; |
esac | esac | ||