diff options
| -rw-r--r-- | dynamic.yml | 4 | ||||
| -rwxr-xr-x | entrypoint.sh | 5 | ||||
| -rwxr-xr-x | plugin.sh | 8 | ||||
| -rw-r--r-- | traefik.yml | 4 |
4 files changed, 14 insertions, 7 deletions
diff --git a/dynamic.yml b/dynamic.yml index c54cfd9..4c601f3 100644 --- a/dynamic.yml +++ b/dynamic.yml @@ -1,7 +1,7 @@ http: routers: dev: - rule: "Host(`dev.rl.internal.simponic.xyz`)" + rule: "Host(`dev.arm.internal.simponic.xyz`)" service: "noop@internal" entryPoints: - "http" @@ -10,7 +10,7 @@ http: dev-secured: entryPoints: - "https" - rule: "Host(`dev.rl.internal.simponic.xyz`)" + rule: "Host(`dev.arm.internal.simponic.xyz`)" service: "local" tls: certResolver: stepca diff --git a/entrypoint.sh b/entrypoint.sh new file mode 100755 index 0000000..aceae78 --- /dev/null +++ b/entrypoint.sh @@ -0,0 +1,5 @@ +#!/bin/bash +export LEGO_CA_CERTIFICATES=/home/lizzy/git/simponic/proxy/roots.pem +export EXEC_PATH=/home/lizzy/git/simponic/proxy/plugin.sh + +sudo --preserve-env /home/lizzy/.asdf/shims/traefik --config=/home/lizzy/git/simponic/proxy/traefik.yml @@ -2,17 +2,19 @@ unset REQUESTS_CA_BUNDLE -API_KEY_FILE=/home/lizzy/git/hc-cert-dns/apikey.secret +API_KEY_FILE=/home/lizzy/git/hatecomputers/hc-cert-dns/apikey.secret ENDPOINT=https://hatecomputers.club PUBLIC_SUFFIXES=.hatecomputers.club CERTBOT_DOMAIN=$(echo $2 | sed 's/^_acme-challenge\.//') CERTBOT_VALIDATION=$3 -/home/lizzy/git/hc-cert-dns/main.py --certbot \ +echo $1 $2 $3 >> /tmp/out + +/home/lizzy/git/hatecomputers/hc-cert-dns/main.py --certbot \ --public-suffixes=$PUBLIC_SUFFIXES \ --certbot-domain=$CERTBOT_DOMAIN \ --certbot-validation=$CERTBOT_VALIDATION \ --endpoint=$ENDPOINT \ --api-key-file=$API_KEY_FILE \ - --dns-propogate-time=5 + --dns-propogate-time=5 2> /tmp/log diff --git a/traefik.yml b/traefik.yml index 9dd7b8a..efdece7 100644 --- a/traefik.yml +++ b/traefik.yml @@ -16,7 +16,7 @@ log: level: DEBUG providers: file: - filename: /home/lizzy/proxy/dynamic.yml + filename: /home/lizzy/git/simponic/proxy/dynamic.yml serversTransport: insecureSkipVerify: true certificatesResolvers: @@ -24,7 +24,7 @@ certificatesResolvers: acme: certificatesDuration: 12 caserver: https://ca.internal.simponic.xyz/acme/ACME/directory - storage: /home/lizzy/proxy/acme.json + storage: /home/lizzy/git/simponic/proxy/acme.json email: elizabeth@simponic.xyz dnsChallenge: provider: "exec" |