31 lines
792 B
Django/Jinja
31 lines
792 B
Django/Jinja
#!/bin/sh
|
|
# vim: set sw=4 ts=4 sts=4 et :
|
|
|
|
POSTGRESQL_DOMAIN="{{ postgresql_cert_domain }}"
|
|
|
|
set -- ${FAILED_DOMAINS}
|
|
for domain; do
|
|
case ${domain} in
|
|
${POSTGRESQL_DOMAIN})
|
|
printf 'Certificate renewal failed for %s, not reloading server\n' \
|
|
"${domain}" >&2
|
|
exit 1
|
|
;;
|
|
esac
|
|
done
|
|
|
|
set -- ${RENEWED_DOMAINS}
|
|
for domain; do
|
|
case ${domain} in
|
|
${POSTGRESQL_DOMAIN})
|
|
install -o root -g root -m u=rw,go=r \
|
|
/etc/letsencrypt/live/${POSTGRESQL_DOMAIN}/fullchain.pem \
|
|
/etc/postgresql/server.cer
|
|
install -o root -g postgres -m u=rw,g=r,o= \
|
|
/etc/letsencrypt/live/${POSTGRESQL_DOMAIN}/privkey.pem \
|
|
/etc/postgresql/server.key
|
|
systemctl reload postgresql
|
|
;;
|
|
esac
|
|
done
|