lazerl0rd/certbot-add.sh

## certbot-add.sh
#! /usr/bin/env bash

domainArg=""

for domain in "${@}"; do
	[[ $domainArg != "" ]] && domainArg+=" "
	domainArg+="-d $domain"
done

if [[ $domainArg != "" ]]; then
	podman run -i --network "host2certbot" --rm -t \
		-v certbot:/var/lib/letsencrypt \
		-v /etc/letsencrypt:/etc/letsencrypt \
		-v /root/.secrets/certbot/cloudflare.ini:/root/.secrets/certbot/cloudflare.ini:ro \
		--uidmap "0:$(stat -c '%u' "$(podman mount "certbot")"):60000" \
		--gidmap "0:$(stat -c '%u' "$(podman mount "certbot")"):60000" \
		certbot/dns-cloudflare:latest certonly \
			--dns-cloudflare \
			--dns-cloudflare-credentials "/root/.secrets/certbot/cloudflare.ini" \
			--dns-cloudflare-propagation-seconds 60 \
			"$domainArg"
fi

chmod 755 "/etc/letsencrypt/"{"archive","live"}
chmod 644 "/etc/letsencrypt/archive/"*"/"*".pem"
	#! /usr/bin/env bash

	domainArg=""

	for domain in "${@}"; do
	[[ $domainArg != "" ]] && domainArg+=" "
	domainArg+="-d $domain"
	done

	if [[ $domainArg != "" ]]; then
	podman run -i --network "host2certbot" --rm -t \
	-v certbot:/var/lib/letsencrypt \
	-v /etc/letsencrypt:/etc/letsencrypt \
	-v /root/.secrets/certbot/cloudflare.ini:/root/.secrets/certbot/cloudflare.ini:ro \
	--uidmap "0:$(stat -c '%u' "$(podman mount "certbot")"):60000" \
	--gidmap "0:$(stat -c '%u' "$(podman mount "certbot")"):60000" \
	certbot/dns-cloudflare:latest certonly \
	--dns-cloudflare \
	--dns-cloudflare-credentials "/root/.secrets/certbot/cloudflare.ini" \
	--dns-cloudflare-propagation-seconds 60 \
	"$domainArg"
	fi

	chmod 755 "/etc/letsencrypt/"{"archive","live"}
	chmod 644 "/etc/letsencrypt/archive/""/"".pem"