evgeny/modoboa-installer
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Replaced certbot-auto by certbot.

Browse Source 
fix #338
This commit is contained in:
Antoine Nguyen
2020-09-17 17:15:49 +02:00
parent a526d9a4fd
commit e5805fda84
1 changed files with 26 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

32
modoboa_installer/ssl.py
View File

@@ -1,7 +1,9 @@
"""SSL tools."""
import os
import sys
from . import package
from . import utils
@@ -70,19 +72,37 @@ class LetsEncryptCertificate(CertificateBackend):
self.config.set("general", "tls_key_file", (
"/etc/letsencrypt/live/{}/privkey.pem".format(self.hostname)))
def install_certbot(self):
"""Install certbot script to generate cert."""
name, version, _id = utils.dist_info()
if name == "Ubuntu":
package.backend.update()
package.backend.install("software-properties-common")
utils.exec_cmd("add-apt-repository -y universe")
if version == "18.04":
utils.exec_cmd("add-apt-repository -y ppa:certbot/certbot")
package.backend.update()
package.backend.install("certbot")
elif name == "Debian":
package.backend.update()
package.backend.install("certbot")
elif "CentOS" in name:
package.backend.install("certbot")
else:
utils.printcolor("Failed to install certbot, aborting.", utils.RED)
sys.exit(1)
def generate_cert(self):
"""Create a certificate."""
utils.printcolor(
"Generating new certificate using letsencrypt", utils.YELLOW)
self.install_certbot()
utils.exec_cmd(
"wget https://dl.eff.org/certbot-auto; chmod a+x certbot-auto",
cwd="/opt")
utils.exec_cmd(
"/opt/certbot-auto certonly -n --standalone -d {} "
"-m {} --agree-tos".format(
"certbot certonly -n --standalone -d {} -m {} --agree-tos"
.format(
self.hostname, self.config.get("letsencrypt", "email")))
with open("/etc/cron.d/letsencrypt", "w") as fp:
fp.write("0 */12 * * * root /opt/certbot-auto renew "
fp.write("0 */12 * * * root certbot renew "
"--quiet --no-self-upgrade --force-renewal\n")
cfg_file = "/etc/letsencrypt/renewal/{}.conf".format(self.hostname)
pattern = "s/authenticator = standalone/authenticator = nginx/"