Release »achmet.1«

Vollendet
09/19/23 14:25:31
Released
achmet.1
Projekt
achmet
Titel
Das ist eine produktive Release von achmet.
Kategorie
bash (27)
Tags
wrapper(2), certificates(2), acme(2), zerossl(2), console(22)
Maintainer
Pieli
Src
unveröffentlicht
Abhängigkeiten

Das ist eine produktive Release von achmet.

Dh, das ist der Code des produktiven Einsatzes. Cheers!

achmets cfg on /etc/conf.d

    # -----------------------------------------------------------------------
    # /etc/conf.d/achmet - The official acme wrapper for use on www-machine w/nctl
    # Created: 12-27-2021 14:04:15Z by pieli
    # Last Update: 09/18/23T00:03:29Z by apkg@22184
    # part of achmet acme.sh-wrapper
    # -----------------------------------------------------------------------
    # Location of your web server's certs; ABS_PATH; DEFAULT:/etc/nginx/ssl
    ACHMET_CPATH=/etc/nginx/ssl

    # the user to which to chown for; user; DEFAULT:wwwrun
    ACHMET_USER=wwwrun

    # the group to which to chown for; user; DEFAULT:nobody
    ACHMET_GROUP=nobody

    # keep quiet for cronning, pretty otherwise; YESNO; DEFAULT:NO
    VERBOSITY=NO

    # log to syslog; YESNO; DEFAULT:YES
    ACHMET_SYSLOG=YES

    # level from there w/syslog, everything lower gets omitted; one of: debug, info, warn, error, crit; DEFAULT:info
    ACHMET_SYSLOG_LEVEL=debug

    # in ACHMET_SYSLOGs output, whether to switch the name tag for the actually running script; YESNO; DEFAULT:YES
    ACHMET_SYSLOG_SWITCH_SCRIPTS=NO

    # the tar with which to tar
    ACHMET_TAR='/usr/bin/tar cjf "$ACHMET_CPATH"/olle_certs.tar.bz2 --exclude-ignore=tar_excludes'

    # whether to scrub .well-known, acme-certs-paths after, YESNO; DEFAULT:YES
    ACHMET_SCRUB='YES'

    # the cert age under that we fetch; DAYS; DEFAULT: 30
    ACHMET_AGE=30

achmet.sh – usage

$#> achmet.sh [-f|-h|-p|-q|-v] [DOMAIN]

achmet is the acme.sh wrapper to fetch certs via acme.sh. It is for 
nginxs with nctl, so do not try to use this without it.
If given a <DOMAIN>, it checks for that, else for all of them.
achmet.sh can be used manually, but is mainly executed automatically for the crons.

-fORCE          transfer certs even if certbot reckons you not eligable
-hELP-output.   This screen.
-pOSIX-output.  When using this option, we end w/error code.
                Else, for cron-friendliness, we end 0 every time.
-qUIET-ouput.   Override VERBOSITY in cfg.
-vERBOSE-ouput. Override VERBOSITY in cfg.