0k
/
0k-charms
6
3
Fork 2
Code Issues 11 Pull Requests 5 Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
205 Commits
27 Branches
14 Tags
41 MiB
Tree: 7892a25823
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7892a25823'
${ noResults }
0k-charms/letsencrypt/hooks/dc-pre-run

78 lines
2.6 KiB
Raw Normal View History

new: [letsencrypt] not anymore a daemon.
6 years ago
new: [letsencrypt] stop any project docker that blocks port 80 when using ``http`` challenge type. Without this, letsencrypt standalone server can't be accessed from outside, and the challenge will fail.
6 years ago
new: [letsencrypt] not anymore a daemon.
6 years ago
new: [letsencrypt] stop any project docker that blocks port 80 when using ``http`` challenge type. Without this, letsencrypt standalone server can't be accessed from outside, and the challenge will fail.
6 years ago
new: [letsencrypt] not anymore a daemon.
6 years ago
new: [letsencrypt] stop any project docker that blocks port 80 when using ``http`` challenge type. Without this, letsencrypt standalone server can't be accessed from outside, and the challenge will fail.
6 years ago
new: [letsencrypt] not anymore a daemon.
6 years ago
  1. #!/bin/bash
  3. ## Init is run on host
  4. ## For now it is run every time the script is launched, but
  5. ## it should be launched only once after build.
  7. ## Accessible variables are:
  8. ## - SERVICE_NAME Name of current service
  9. ## - DOCKER_BASE_IMAGE Base image from which this service might be built if any
  10. ## - SERVICE_DATASTORE Location on host of the DATASTORE of this service
  11. ## - SERVICE_CONFIGSTORE Location on host of the CONFIGSTORE of this service
  13. . lib/common || exit 1
  15. set -e
  18. service_def=$(get_compose_service_def "$SERVICE_NAME")
  20. USER_EMAIL=$(echo "$service_def" | shyaml get-value options.email 2>/dev/null) || {
  21. err "No ${WHITE}email${NORMAL} value in ${DARKYELLOW}$SERVICE_NAME${NORMAL} compose's ${WHITE}options${NORMAL}."
  22. exit 1
  23. }
  25. config="
  26. $SERVICE_NAME:
  27. environment:
  28. LETSENCRYPT_USER_MAIL: $USER_EMAIL"
  30. if environment_def="$(printf "%s" "$service_def" | shyaml -y get-value options.env 2>/dev/null)"; then
  31. while read-0 key value; do
  32. config+="$(printf "\n %s: %s" "$key" "$value")"
  33. done < <(printf "%s" "$environment_def" | yaml_opt_bash_env_ignore_first_level LEXICON)
  35. if ! provider=$(printf "%s" "$environment_def" | shyaml -y get-value provider 2>/dev/null); then
  36. provider=
  37. ## If no provider is given, we fallback on the first found
  39. while read-0 key value; do
  40. [[ "$(echo "$value" | shyaml get-type)" == "struct" ]] && {
  41. provider="$key"
  42. break
  43. }
  44. done < <(echo "$environment_def" | shyaml key-values-0)
  45. warn "No ${WHITE}provider${NORMAL} key given, had to infer it, chose '$key'."
  46. fi
  48. config+=$(echo -en "\n LEXICON_PROVIDER: $provider")
  49. fi
  53. if ! challenge_type=$(printf "%s" "$service_def" | shyaml get-value "options.challenge-type" 2>/dev/null); then
  54. warn "No ${WHITE}challenge-type${NORMAL} provided, defaulting to 'http'."
  55. challenge_type=http
  56. fi
  57. config+=$(echo -en "\n CHALLENGE_TYPE: $challenge_type")
  60. aimport remainder_args
  61. if [ "$challenge_type" == "http" ] &&
  62. [ "${remainder_args[0]}" == "crt" ] &&
  63. [ "${remainder_args[1]}" == "create" ] &&
  64. ! [ -d "$SERVICE_DATASTORE/etc/letsencrypt/live/${remainder_args[2]}" ]; then
  65. while read container_id; do
  66. docker stop -t 5 "$container_id"
  67. done < <(docker ps \
  68. --filter label="compose.project=$PROJECT_NAME" \
  69. --filter publish=80 \
  70. --format "{{.ID}}"
  71. )
  72. config+=$(echo -en "\n ports:
  73. - \"0.0.0.0:80:80\"")
  74. fi
  76. init-config-add "$config"
  78. mkdir -p "$SERVICE_DATASTORE/etc/letsencrypt"