1
0
mirror of https://github.com/krislamo/puppet-acme_vault synced 2024-11-09 20:30:36 +00:00
puppet-acme_vault/templates/domain.epp
2019-08-08 12:01:55 -04:00

42 lines
972 B
Bash

#!/bin/bash
. ${HOME}/.bashrc
<%= $acme_script %> \
--issue \
<% if $staging { -%>
--staging \
--server <%= $staging_url %> \
<% } else { -%>
--server <%= $prod_url %> \
<% } -%>
--dns dns_lexicon \
--dnssleep 1800 \
--domain "<%= $domain %>" --challenge-alias <%= "$domain" %> \
<% $domains.each |$d| {
# this uses the challenge-alias override if specified, otherwise
# uses the sld.tld of the given domain
if $overrides[$d] {
$ca = $overrides[$d]
}
else {
# we need to calculate the challenge-alias
$ds = split($d, '[.]')
# we don't want to count the wildcard, so strip it off
if $ds[0] == "*" {
$clean = $ds[1, -1]
}
else {
$clean = $ds[0, -1]
}
$ca = join($clean, ".")
}
-%>
--domain "<%= $d %>" --challenge-alias <%= "${ca}" %> \
<% } -%>
> /dev/null && \
<%= $acme_script %> \
--deploy \
--domain <%= $domain %> \
--deploy-hook vault_cli