noinarisak · January 16, 2020 03:55
diff --git a/README.md b/README.md
diff --git a/certbot.sh b/certbot.sh
 #!/bin/bash

 # NOTE: Wednesday, January 15, 2020
 # Complete jack this up to make it work with my situation. Needs some cleanup.

 aws_config_file="aws-config"
 operation="certonly"
 config_path="/private/etc/letsencrypt"

 usage() {
    echo "Usage: $0 [ -r ] [ -c AWS_CONFIG_FILE ] [ -p CONFIG_PATH ] [ -d DOMAIN [ -d DOMAIN [ ... ]]]" 1>&2
 }

 OPTS=`getopt -o hrc:p:d: --long help,renew,aws-config-file:,config-path:,domain: -- "$@"`
 eval set -- "$OPTS"
 while true; do
    case "$1" in
        -h|--help)
            usage
            exit 0 ;;
        -r|--renew)
            operation="renew" ;;
        -c|--aws-config-file)
            aws_config_file=$2 ; shift 2 ;;
        -p|--config-path)
            config_path=$2 ; shift 2 ;;
        -d|--domain)
            domains+=("-d $2") ; shift 2 ;;
        --) shift ; break ;;
        *) echo "Internal error!" ; exit 1 ;;
    esac
 done

 echo "AWS config file: ${aws_config_file}"
 echo "Operation: ${operation}"
 echo "Config path: ${config_path}"
 if [ -v domains[@] ]; then
    echo "Domains: ${domains[@]}"
 else
    echo "No domains specified"
 fi

 if [[ $EUID -ne 0 ]]; then
    echo "Error: This script should be run as root"
    exit 1
 fi

 if [ ! -f "${aws_config_file}" ]; then
    echo "Error: Configuration file \`\`${aws_config_file}'' not found."
    exit 1
 fi

 # TODO: Don't think this is a good appoarch. Consider using the AWS_KEY and AWS_SECRET env instead --env
 mkdir -p $config_path
 cp $aws_config_file $config_path/aws-config

 docker pull certbot/dns-route53

 echo "Running Certbot"
 # docker run -it --rm --name certbot \
 #     --env AWS_CONFIG_FILE=/etc/letsencrypt/aws-config \
 #     -v "${config_path}:/etc/letsencrypt" \
 #     -v "/var/lib/letsencrypt:/var/lib/letsencrypt" \
 #     certbot/dns-route53 \
 #     --server https://acme-v02.api.letsencrypt.org/directory \
 #     --dns-route53 \
 #     $operation \
 #     ${domains[@]}

 # TODO: Reduce this down to just single or two calls.
 # BUG: --domains does not work. Probably bc zsh.
 docker run -it --rm --name certbot \
    -v "/xdata/_tmp/docker-certbot-route53/aws-config:/root/.aws/credentials" \
    -v "/xdata/_tmp/docker-certbot-route53/certs:/etc/letsencrypt" \
    -v "/private/var/lib/letsencrypt:/var/lib/letsencrypt" \
    certbot/dns-route53 \
    --server https://acme-v02.api.letsencrypt.org/directory \
    --dns-route53 \
    --agree-tos \
    --config-dir "/etc/letsencrypt" \
    --work-dir "/etc/letsencrypt" \
    --logs-dir "/etc/letsencrypt" \
    --email [email protected] \
    $operation \
    --domains narisaklabs.com,login.narisaklabs.com
	#!/bin/bash

	# NOTE: Wednesday, January 15, 2020
	# Complete jack this up to make it work with my situation. Needs some cleanup.

	aws_config_file="aws-config"
	operation="certonly"
	config_path="/private/etc/letsencrypt"

	usage() {
	echo "Usage: $0 [ -r ] [ -c AWS_CONFIG_FILE ] [ -p CONFIG_PATH ] [ -d DOMAIN [ -d DOMAIN [ ... ]]]" 1>&2
	}

	OPTS=`getopt -o hrc:p:d: --long help,renew,aws-config-file:,config-path:,domain: -- "$@"`
	eval set -- "$OPTS"
	while true; do
	case "$1" in
	-h\|--help)
	usage
	exit 0 ;;
	-r\|--renew)
	operation="renew" ;;
	-c\|--aws-config-file)
	aws_config_file=$2 ; shift 2 ;;
	-p\|--config-path)
	config_path=$2 ; shift 2 ;;
	-d\|--domain)
	domains+=("-d $2") ; shift 2 ;;
	--) shift ; break ;;
	*) echo "Internal error!" ; exit 1 ;;
	esac
	done

	echo "AWS config file: ${aws_config_file}"
	echo "Operation: ${operation}"
	echo "Config path: ${config_path}"
	if [ -v domains[@] ]; then
	echo "Domains: ${domains[@]}"
	else
	echo "No domains specified"
	fi

	if [[ $EUID -ne 0 ]]; then
	echo "Error: This script should be run as root"
	exit 1
	fi

	if [ ! -f "${aws_config_file}" ]; then
	echo "Error: Configuration file \`\`${aws_config_file}'' not found."
	exit 1
	fi

	# TODO: Don't think this is a good appoarch. Consider using the AWS_KEY and AWS_SECRET env instead --env
	mkdir -p $config_path
	cp $aws_config_file $config_path/aws-config

	docker pull certbot/dns-route53

	echo "Running Certbot"
	# docker run -it --rm --name certbot \
	# --env AWS_CONFIG_FILE=/etc/letsencrypt/aws-config \
	# -v "${config_path}:/etc/letsencrypt" \
	# -v "/var/lib/letsencrypt:/var/lib/letsencrypt" \
	# certbot/dns-route53 \
	# --server https://acme-v02.api.letsencrypt.org/directory \
	# --dns-route53 \
	# $operation \
	# ${domains[@]}

	# TODO: Reduce this down to just single or two calls.
	# BUG: --domains does not work. Probably bc zsh.
	docker run -it --rm --name certbot \
	-v "/xdata/_tmp/docker-certbot-route53/aws-config:/root/.aws/credentials" \
	-v "/xdata/_tmp/docker-certbot-route53/certs:/etc/letsencrypt" \
	-v "/private/var/lib/letsencrypt:/var/lib/letsencrypt" \
	certbot/dns-route53 \
	--server https://acme-v02.api.letsencrypt.org/directory \
	--dns-route53 \
	--agree-tos \
	--config-dir "/etc/letsencrypt" \
	--work-dir "/etc/letsencrypt" \
	--logs-dir "/etc/letsencrypt" \
	--email [email protected] \
	$operation \
	--domains narisaklabs.com,login.narisaklabs.com