From b8f9e1b02d52ea4ed5873f6b8a4292f0d45d89f2 Mon Sep 17 00:00:00 2001 From: cbrand Date: Tue, 8 Aug 2023 02:17:43 -0700 Subject: [PATCH] Add certbot.ps1 --- certbot.ps1 | 30 ++++++++++++++++++++++++++++++ 1 file changed, 30 insertions(+) create mode 100644 certbot.ps1 diff --git a/certbot.ps1 b/certbot.ps1 new file mode 100644 index 0000000..16f823b --- /dev/null +++ b/certbot.ps1 @@ -0,0 +1,30 @@ +Set-Location /etc/letsencrypt + +Write-Host "-- running certbot command" + +export AWS_CONFIG_FILE=/var/lib/letsencrypt/aws/AWS_CONFIG;certbot certonly --dns-route53 --dns-route53-propagation-seconds 30 -d *.jcolebrand.info,jcolebrand.info + +Write-Host "-- Writing to jellyfin" + +openssl pkcs12 -export -out /zfs/data/jellyfin/jcolebrand.info.pcks12 -inkey /etc/letsencrypt/live/jcolebrand.info/privkey.pem -in /etc/letsencrypt/live/jcolebrand.info/fullchain.pem + +Write-Host "-- Writing to medusa" + +Set-Location /etc/dirsrv/slapd-medusa/ +$pwd = ((Get-Content /etc/dirsrv/slapd-medusa/pin.txt) -split ':')[1] +openssl pkcs12 -export -out /etc/dirsrv/slapd-medusa/jcolebrand.info.pfx -inkey /etc/letsencrypt/live/jcolebrand.info/privkey.pem -in /etc/letsencrypt/live/jcolebrand.info/fullchain.pem -password "pass:$pwd" + +certutil -F -d /etc/dirsrv/slapd-medusa -f /etc/dirsrv/slapd-medusa/pwdfile.txt -w /etc/dirsrv/slapd-medusa/pwdfile.txt -n "Server-cert" + +pk12util -i /etc/dirsrv/slapd-medusa/jcolebrand.info.pfx -d /etc/dirsrv/slapd-medusa -k /etc/dirsrv/slapd-medusa/pwdfile.txt -w /etc/dirsrv/slapd-medusa/pwdfile.txt +certutil --rename -n "*.jcolebrand.info - Let's Encrypt" --new-n "Server-cert" -d /etc/dirsrv/slapd-medusa -f /etc/dirsrv/slapd-medusa/pwdfile.txt -w /etc/dirsrv/slapd-medusa/pwdfile.txt +certutil -M -t "pu,u,u" -n "Server-cert" -d /etc/dirsrv/slapd-medusa -f /etc/dirsrv/slapd-medusa/pwdfile.txt -w /etc/dirsrv/slapd-medusa/pwdfile.txt + +Write-Host "-- Restarting stuff" + +systemctl restart jellyfin.service + +systemctl restart dirsrv@medusa + +systemctl restart nginx +