search

pythonindia / magudi

Salt stack based config for Python India servers
https://in.pycon.org
5 stars 9 forks source link

Update SSL certificate location #29

Closed palnabarun closed 4 years ago

palnabarun commented 4 years ago

The older SSL certificates were not directly managed by Certbot and hence were tedious to manage.

Provisioned a Certbot managed certificate

TODO: Certbot cronjob to renew certificates whenever necessary.

palnabarun commented 4 years ago

cc: @ananyo2012 @sayanchowdhury

ananyo2012 commented 4 years ago

@palnabarun For the renewal command, magudi has a way to check for renewals using salt-call as mentioned here - https://github.com/pythonindia/magudi/blob/master/salt/roots/le/init.sls#L4-L7. You may want to check that.

palnabarun commented 4 years ago

Certbot-auto is obsolete now. The certbot command itself does the certificate renewal. We just need to schedule it.

ananyo2012 commented 4 years ago

Seems like this fixes #26