kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 29 Pull Requests 2 Projects 2 Activity

WIP: Replace the certbot systemd unit with a cron job with notifications #68

Closed
greg wants to merge 2 commits from bugfix/3-certbot_email_notifications into master
pull from: bugfix/3-certbot_email_notifications
merge into: kosmos:master
Conversation 4 Commits 2 Files Changed 2 +21 -1
2 changed files with 21 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
site-cookbooks/kosmos-base/metadata.rb
View File

@ -4,7 +4,7 @@ maintainer_email 'mail@kosmos.org'
license 'MIT'
description 'The Kosmos base cookbook'
long_description IO.read(File.join(File.dirname(__FILE__), 'README.md'))
version '0.2.0'
version '0.2.1'
chef_version '>= 14.0' # Uses the new sudo resource
depends 'apt'

20
site-cookbooks/kosmos-base/recipes/letsencrypt.rb
View File

@ -72,3 +72,23 @@ template "/root/gandi_dns_certbot_hook.sh" do
variables gandi_api_key: gandi_api_data_bag_item["key"]
mode 0770
end
# Replace the systemd timer with a cronjob, for easy email notifications
%w(certbot.service certbot.timer).each do |service|
service service do
action :disable
end
file "/lib/systemd/system/#{service}" do
action :delete
end
end
package "cronic"
cron "certbot" do
hour "0,12"
minute 0
mailto "ops@kosmos.org"
command "cronic /usr/bin/certbot renew -q"
end