user454322/renew-lets-encrypt-openbsd.sh

## renew-lets-encrypt-openbsd.sh
#!/usr/bin/env bash

#set -e
#openssl s_client -starttls smtp -showcerts -connect email.example.com:25 -servername email.example.com
#openssl x509 -in /etc/ssl/email.example.com.fullchain.pem -text

readonly LOG_PATH='/var/log/acme-cert-renew.log'
readonly DOMAIN='example.com'

echo '::::::::::::::::::::::' | ts | tee -a "$LOG_PATH"
echo 'Starting to renew cert' | ts | tee -a "$LOG_PATH"
rcctl -f start httpd |& ts | tee -a "$LOG_PATH"
echo 'Waiting..' | ts | tee -a "$LOG_PATH"
sleep 10

/usr/sbin/acme-client -v "$DOMAIN" |& ts | tee -a "$LOG_PATH"

echo 'Waiting after ...' | ts | tee -a "$LOG_PATH"
sleep 180
rcctl stop httpd |& ts | tee -a "$LOG_PATH"
echo 'Done renewing cert' | ts | tee -a "$LOG_PATH"

/etc/rc.d/smtpd restart |& ts | tee -a "$LOG_PATH"

tail -15 "$LOG_PATH" | mail -s "Email renewal certificate" root

#exit 0
	#!/usr/bin/env bash

	#set -e
	#openssl s_client -starttls smtp -showcerts -connect email.example.com:25 -servername email.example.com
	#openssl x509 -in /etc/ssl/email.example.com.fullchain.pem -text

	readonly LOG_PATH='/var/log/acme-cert-renew.log'
	readonly DOMAIN='example.com'

	echo '::::::::::::::::::::::' \| ts \| tee -a "$LOG_PATH"
	echo 'Starting to renew cert' \| ts \| tee -a "$LOG_PATH"
	rcctl -f start httpd \|& ts \| tee -a "$LOG_PATH"
	echo 'Waiting..' \| ts \| tee -a "$LOG_PATH"
	sleep 10

	/usr/sbin/acme-client -v "$DOMAIN" \|& ts \| tee -a "$LOG_PATH"

	echo 'Waiting after ...' \| ts \| tee -a "$LOG_PATH"
	sleep 180
	rcctl stop httpd \|& ts \| tee -a "$LOG_PATH"
	echo 'Done renewing cert' \| ts \| tee -a "$LOG_PATH"

	/etc/rc.d/smtpd restart \|& ts \| tee -a "$LOG_PATH"

	tail -15 "$LOG_PATH" \| mail -s "Email renewal certificate" root

	#exit 0