dlitz/mtik-cert-pusher
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add acmetool hook example

Browse Source
This commit is contained in:
Darsey Litzenberger
2026-03-19 20:02:53 -06:00
parent e6a49428c9
commit 81d1555dbc
1 changed files with 34 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

34
examples/acmetool/mtik-cert-pusher-hook Executable file
View File

@@ -0,0 +1,34 @@
#!/bin/bash
# dlitz 2026
set -eu
EVENT_NAME="$1"
[ "$EVENT_NAME" = "live-updated" ] || exit 42
[ -e "/etc/default/acme-mtik-cert-pusher-hook" ] && . /etc/default/acme-mtik-cert-pusher-hook
[ -e "/etc/conf.d/acme-mtik-cert-pusher-hook" ] && . /etc/conf.d/acme-mtik-cert-pusher-hook
[ -z "${ACME_STATE_DIR-}" ] && ACME_STATE_DIR="/var/lib/acme"
declare -A match_hosts=()
while read name dummy; do
if [[ "$name" == \#* ]]; then
# Ignore comments
continue
fi
match_hosts["$name"]=1
done < "$ACME_STATE_DIR/conf/mtik-hosts"
cd /opt/mtik-cert-pusher
while read name; do
certdir="$ACME_STATE_DIR/live/$name"
if [ -z "$name" -o ! -e "$certdir" ]; then
continue
fi
if ! [ "${match_hosts[$name]+1}" ]; then
continue
fi
python3 -m mtik_cert_pusher deploy --private-key "$certdir/privkey" --cert "$certdir/cert" --chain "$certdir/chain" --ssh-host "$name"
done