kevinreiss
commented
1 year ago The app stores certs in the "ssl" directory (currently at /var/local/ezproxy/ssl). There is a text file "active" that appears to point to the cert that shows as active in the web UI.
It does appear that the app creates a file with the .cnf that records the timestamp of when a new cert is activated that contains lines that look:
created 2023-04-22 10:54:18
imported
load succeeded
Each cert has three files stored in the app's ssl directory:
-rw------- 1 root ezproxy 241 Apr 22 10:54 00000012.key -rw------- 1 root ezproxy 2.1K Apr 22 10:54 00000012.crt -rw------- 1 root ezproxy 55 Apr 22 10:54 00000012.cnf -rw------- 1 ezproxy ezproxy 3 Apr 22 10:55 active
When we renew the SSL certificate for the ezproxy application, we have to update a pointer in the application itself to point to the renewed cert.
Can we do this in Sensu (a check/reminder)? Automate the application update somehow?