new: [zato] auto schedule crt renew from letsencrypt certs

2025-02-06 11:53:41 +01:00
parent 30ff0a39b6
commit 1048cb4ba6
4 changed files with 34 additions and 5 deletions
--- a/zato/lib/common
+++ b/zato/lib/common
@@ -37,3 +37,15 @@ exec_as_zato_in_container() {
        return 1
    fi
 }
+
+## merge certificate for zato HapProxy to handle https API calls
+merge_crt_letsencrypt(){
+    local DOMAIN="$1"
+    
+    DEST_LETSENCRYPT_FULLCHAIN="$SERVICE_DATASTORE/opt/zato/letsencrypt-fullchain.pem"
+    mkdir -p "${DEST_LETSENCRYPT_FULLCHAIN%/*}"
+    cat $DATASTORE/letsencrypt/etc/letsencrypt/live/$DOMAIN/{fullchain,privkey}.pem > "$DEST_LETSENCRYPT_FULLCHAIN" || return 1
+    info "Letsencrypt {fullchain,privkey}.pem have been concat to /opt/zato/letsencrypt-fullchain.pem for zato hapProxy conf"
+}
+
+