mirror of
https://github.com/linuxserver/docker-swag.git
synced 2026-03-12 13:15:15 +09:00
Compare commits
2 Commits
2.11.0-ls3
...
renewal-ho
| Author | SHA1 | Date | |
|---|---|---|---|
|
732b6d1bf1 | ||
|
|
0c3bc63349 |
64
.github/workflows/external_trigger.yml
vendored
64
.github/workflows/external_trigger.yml
vendored
@@ -11,17 +11,15 @@ jobs:
|
|||||||
|
|
||||||
- name: External Trigger
|
- name: External Trigger
|
||||||
if: github.ref == 'refs/heads/master'
|
if: github.ref == 'refs/heads/master'
|
||||||
env:
|
|
||||||
SKIP_EXTERNAL_TRIGGER: ${{ vars.SKIP_EXTERNAL_TRIGGER }}
|
|
||||||
run: |
|
run: |
|
||||||
printf "# External trigger for docker-swag\n\n" >> $GITHUB_STEP_SUMMARY
|
printf "# External trigger for docker-swag\n\n" >> $GITHUB_STEP_SUMMARY
|
||||||
if grep -q "^swag_master" <<< "${SKIP_EXTERNAL_TRIGGER}"; then
|
if [ -n "${{ secrets.PAUSE_EXTERNAL_TRIGGER_SWAG_MASTER }}" ]; then
|
||||||
echo "> [!WARNING]" >> $GITHUB_STEP_SUMMARY
|
echo "> [!WARNING]" >> $GITHUB_STEP_SUMMARY
|
||||||
echo "> Github organizational variable \`SKIP_EXTERNAL_TRIGGER\` contains \`swag_master\`; skipping trigger." >> $GITHUB_STEP_SUMMARY
|
echo "> Github secret \`PAUSE_EXTERNAL_TRIGGER_SWAG_MASTER\` is set; skipping trigger." >> $GITHUB_STEP_SUMMARY
|
||||||
exit 0
|
exit 0
|
||||||
fi
|
fi
|
||||||
echo "> [!NOTE]" >> $GITHUB_STEP_SUMMARY
|
echo "> [!NOTE]" >> $GITHUB_STEP_SUMMARY
|
||||||
echo "> External trigger running off of master branch. To disable this trigger, add \`swag_master\` into the Github organizational variable \`SKIP_EXTERNAL_TRIGGER\`." >> $GITHUB_STEP_SUMMARY
|
echo "> External trigger running off of master branch. To disable this trigger, set a Github secret named \`PAUSE_EXTERNAL_TRIGGER_SWAG_MASTER\`" >> $GITHUB_STEP_SUMMARY
|
||||||
printf "\n## Retrieving external version\n\n" >> $GITHUB_STEP_SUMMARY
|
printf "\n## Retrieving external version\n\n" >> $GITHUB_STEP_SUMMARY
|
||||||
EXT_RELEASE=$(curl -sL "https://pypi.python.org/pypi/certbot/json" |jq -r '. | .info.version')
|
EXT_RELEASE=$(curl -sL "https://pypi.python.org/pypi/certbot/json" |jq -r '. | .info.version')
|
||||||
echo "Type is \`pip_version\`" >> $GITHUB_STEP_SUMMARY
|
echo "Type is \`pip_version\`" >> $GITHUB_STEP_SUMMARY
|
||||||
@@ -80,38 +78,26 @@ jobs:
|
|||||||
echo "New version \`${EXT_RELEASE}\` found; but there already seems to be an active build on Jenkins; exiting" >> $GITHUB_STEP_SUMMARY
|
echo "New version \`${EXT_RELEASE}\` found; but there already seems to be an active build on Jenkins; exiting" >> $GITHUB_STEP_SUMMARY
|
||||||
exit 0
|
exit 0
|
||||||
else
|
else
|
||||||
if [[ "${artifacts_found}" == "false" ]]; then
|
printf "\n## Trigger new build\n\n" >> $GITHUB_STEP_SUMMARY
|
||||||
echo "> [!WARNING]" >> $GITHUB_STEP_SUMMARY
|
echo "New version \`${EXT_RELEASE}\` found; old version was \`${IMAGE_VERSION}\`. Triggering new build" >> $GITHUB_STEP_SUMMARY
|
||||||
echo "> New version detected, but not all artifacts are published yet; skipping trigger" >> $GITHUB_STEP_SUMMARY
|
response=$(curl -iX POST \
|
||||||
FAILURE_REASON="New version ${EXT_RELEASE} for swag tag latest is detected, however not all artifacts are uploaded to upstream release yet. Will try again later."
|
https://ci.linuxserver.io/job/Docker-Pipeline-Builders/job/docker-swag/job/master/buildWithParameters?PACKAGE_CHECK=false \
|
||||||
curl -X POST -H "Content-Type: application/json" --data '{"avatar_url": "https://cdn.discordapp.com/avatars/354986384542662657/df91181b3f1cf0ef1592fbe18e0962d7.png","embeds": [{"color": 9802903,
|
--user ${{ secrets.JENKINS_USER }}:${{ secrets.JENKINS_TOKEN }} | grep -i location | sed "s|^[L|l]ocation: \(.*\)|\1|")
|
||||||
"description": "**Trigger Failed** \n**Reason:** '"${FAILURE_REASON}"' \n"}],
|
echo "Jenkins [job queue url](${response%$'\r'})" >> $GITHUB_STEP_SUMMARY
|
||||||
"username": "Github Actions"}' ${{ secrets.DISCORD_WEBHOOK }}
|
echo "Sleeping 10 seconds until job starts" >> $GITHUB_STEP_SUMMARY
|
||||||
else
|
sleep 10
|
||||||
printf "\n## Trigger new build\n\n" >> $GITHUB_STEP_SUMMARY
|
buildurl=$(curl -s "${response%$'\r'}api/json" | jq -r '.executable.url')
|
||||||
echo "New version \`${EXT_RELEASE}\` found; old version was \`${IMAGE_VERSION}\`. Triggering new build" >> $GITHUB_STEP_SUMMARY
|
buildurl="${buildurl%$'\r'}"
|
||||||
if "${artifacts_found}" == "true" ]]; then
|
echo "Jenkins job [build url](${buildurl})" >> $GITHUB_STEP_SUMMARY
|
||||||
echo "All artifacts seem to be uploaded." >> $GITHUB_STEP_SUMMARY
|
echo "Attempting to change the Jenkins job description" >> $GITHUB_STEP_SUMMARY
|
||||||
fi
|
curl -iX POST \
|
||||||
response=$(curl -iX POST \
|
"${buildurl}submitDescription" \
|
||||||
https://ci.linuxserver.io/job/Docker-Pipeline-Builders/job/docker-swag/job/master/buildWithParameters?PACKAGE_CHECK=false \
|
--user ${{ secrets.JENKINS_USER }}:${{ secrets.JENKINS_TOKEN }} \
|
||||||
--user ${{ secrets.JENKINS_USER }}:${{ secrets.JENKINS_TOKEN }} | grep -i location | sed "s|^[L|l]ocation: \(.*\)|\1|")
|
--data-urlencode "description=GHA external trigger https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}" \
|
||||||
echo "Jenkins [job queue url](${response%$'\r'})" >> $GITHUB_STEP_SUMMARY
|
--data-urlencode "Submit=Submit"
|
||||||
echo "Sleeping 10 seconds until job starts" >> $GITHUB_STEP_SUMMARY
|
echo "**** Notifying Discord ****"
|
||||||
sleep 10
|
TRIGGER_REASON="A version change was detected for swag tag latest. Old version:${IMAGE_VERSION} New version:${EXT_RELEASE}"
|
||||||
buildurl=$(curl -s "${response%$'\r'}api/json" | jq -r '.executable.url')
|
curl -X POST -H "Content-Type: application/json" --data '{"avatar_url": "https://cdn.discordapp.com/avatars/354986384542662657/df91181b3f1cf0ef1592fbe18e0962d7.png","embeds": [{"color": 9802903,
|
||||||
buildurl="${buildurl%$'\r'}"
|
"description": "**Build Triggered** \n**Reason:** '"${TRIGGER_REASON}"' \n**Build URL:** '"${buildurl}display/redirect"' \n"}],
|
||||||
echo "Jenkins job [build url](${buildurl})" >> $GITHUB_STEP_SUMMARY
|
"username": "Github Actions"}' ${{ secrets.DISCORD_WEBHOOK }}
|
||||||
echo "Attempting to change the Jenkins job description" >> $GITHUB_STEP_SUMMARY
|
|
||||||
curl -iX POST \
|
|
||||||
"${buildurl}submitDescription" \
|
|
||||||
--user ${{ secrets.JENKINS_USER }}:${{ secrets.JENKINS_TOKEN }} \
|
|
||||||
--data-urlencode "description=GHA external trigger https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}" \
|
|
||||||
--data-urlencode "Submit=Submit"
|
|
||||||
echo "**** Notifying Discord ****"
|
|
||||||
TRIGGER_REASON="A version change was detected for swag tag latest. Old version:${IMAGE_VERSION} New version:${EXT_RELEASE}"
|
|
||||||
curl -X POST -H "Content-Type: application/json" --data '{"avatar_url": "https://cdn.discordapp.com/avatars/354986384542662657/df91181b3f1cf0ef1592fbe18e0962d7.png","embeds": [{"color": 9802903,
|
|
||||||
"description": "**Build Triggered** \n**Reason:** '"${TRIGGER_REASON}"' \n**Build URL:** '"${buildurl}display/redirect"' \n"}],
|
|
||||||
"username": "Github Actions"}' ${{ secrets.DISCORD_WEBHOOK }}
|
|
||||||
fi
|
|
||||||
fi
|
fi
|
||||||
|
|||||||
42
.github/workflows/package_trigger.yml
vendored
Normal file
42
.github/workflows/package_trigger.yml
vendored
Normal file
@@ -0,0 +1,42 @@
|
|||||||
|
name: Package Trigger Main
|
||||||
|
|
||||||
|
on:
|
||||||
|
workflow_dispatch:
|
||||||
|
|
||||||
|
jobs:
|
||||||
|
package-trigger-master:
|
||||||
|
runs-on: ubuntu-latest
|
||||||
|
steps:
|
||||||
|
- uses: actions/checkout@v4.1.1
|
||||||
|
|
||||||
|
- name: Package Trigger
|
||||||
|
if: github.ref == 'refs/heads/master'
|
||||||
|
run: |
|
||||||
|
printf "# Package trigger for docker-swag\n\n" >> $GITHUB_STEP_SUMMARY
|
||||||
|
if [ -n "${{ secrets.PAUSE_PACKAGE_TRIGGER_SWAG_MASTER }}" ]; then
|
||||||
|
echo "> [!WARNING]" >> $GITHUB_STEP_SUMMARY
|
||||||
|
echo "> Github secret \`PAUSE_PACKAGE_TRIGGER_SWAG_MASTER\` is set; skipping trigger." >> $GITHUB_STEP_SUMMARY
|
||||||
|
exit 0
|
||||||
|
fi
|
||||||
|
if [ $(curl -s https://ci.linuxserver.io/job/Docker-Pipeline-Builders/job/docker-swag/job/master/lastBuild/api/json | jq -r '.building') == "true" ]; then
|
||||||
|
echo "> [!WARNING]" >> $GITHUB_STEP_SUMMARY
|
||||||
|
echo "> There already seems to be an active build on Jenkins; skipping package trigger" >> $GITHUB_STEP_SUMMARY
|
||||||
|
exit 0
|
||||||
|
fi
|
||||||
|
echo "> [!NOTE]" >> $GITHUB_STEP_SUMMARY
|
||||||
|
echo "> Package trigger running off of master branch. To disable, set a Github secret named \`PAUSE_PACKAGE_TRIGGER_SWAG_MASTER\`" >> $GITHUB_STEP_SUMMARY
|
||||||
|
response=$(curl -iX POST \
|
||||||
|
https://ci.linuxserver.io/job/Docker-Pipeline-Builders/job/docker-swag/job/master/buildWithParameters?PACKAGE_CHECK=true \
|
||||||
|
--user ${{ secrets.JENKINS_USER }}:${{ secrets.JENKINS_TOKEN }} | grep -i location | sed "s|^[L|l]ocation: \(.*\)|\1|")
|
||||||
|
echo "Jenkins [job queue url](${response%$'\r'})" >> $GITHUB_STEP_SUMMARY
|
||||||
|
echo "Sleeping 10 seconds until job starts" >> $GITHUB_STEP_SUMMARY
|
||||||
|
sleep 10
|
||||||
|
buildurl=$(curl -s "${response%$'\r'}api/json" | jq -r '.executable.url')
|
||||||
|
buildurl="${buildurl%$'\r'}"
|
||||||
|
echo "Jenkins job [build url](${buildurl})" >> $GITHUB_STEP_SUMMARY
|
||||||
|
echo "Attempting to change the Jenkins job description" >> $GITHUB_STEP_SUMMARY
|
||||||
|
curl -iX POST \
|
||||||
|
"${buildurl}submitDescription" \
|
||||||
|
--user ${{ secrets.JENKINS_USER }}:${{ secrets.JENKINS_TOKEN }} \
|
||||||
|
--data-urlencode "description=GHA package trigger https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}" \
|
||||||
|
--data-urlencode "Submit=Submit"
|
||||||
64
.github/workflows/package_trigger_scheduler.yml
vendored
64
.github/workflows/package_trigger_scheduler.yml
vendored
@@ -14,8 +14,6 @@ jobs:
|
|||||||
fetch-depth: '0'
|
fetch-depth: '0'
|
||||||
|
|
||||||
- name: Package Trigger Scheduler
|
- name: Package Trigger Scheduler
|
||||||
env:
|
|
||||||
SKIP_PACKAGE_TRIGGER: ${{ vars.SKIP_PACKAGE_TRIGGER }}
|
|
||||||
run: |
|
run: |
|
||||||
printf "# Package trigger scheduler for docker-swag\n\n" >> $GITHUB_STEP_SUMMARY
|
printf "# Package trigger scheduler for docker-swag\n\n" >> $GITHUB_STEP_SUMMARY
|
||||||
printf "Found the branches:\n\n%s\n" "$(git for-each-ref --format='- %(refname:lstrip=3)' refs/remotes)" >> $GITHUB_STEP_SUMMARY
|
printf "Found the branches:\n\n%s\n" "$(git for-each-ref --format='- %(refname:lstrip=3)' refs/remotes)" >> $GITHUB_STEP_SUMMARY
|
||||||
@@ -26,57 +24,27 @@ jobs:
|
|||||||
continue
|
continue
|
||||||
fi
|
fi
|
||||||
printf "\n## Evaluating \`%s\`\n\n" ${br} >> $GITHUB_STEP_SUMMARY
|
printf "\n## Evaluating \`%s\`\n\n" ${br} >> $GITHUB_STEP_SUMMARY
|
||||||
JENKINS_VARS=$(curl -sX GET https://raw.githubusercontent.com/linuxserver/docker-swag/${br}/jenkins-vars.yml)
|
ls_branch=$(curl -sX GET https://raw.githubusercontent.com/linuxserver/docker-swag/${br}/jenkins-vars.yml | yq -r '.ls_branch')
|
||||||
if [[ "${br}" == $(yq -r '.ls_branch' <<< "${JENKINS_VARS}") ]]; then
|
if [ "${br}" == "${ls_branch}" ]; then
|
||||||
echo "Branch appears to be live; checking workflow." >> $GITHUB_STEP_SUMMARY
|
echo "Branch appears to be live; checking workflow." >> $GITHUB_STEP_SUMMARY
|
||||||
if [[ $(yq -r '.skip_package_check' <<< "${JENKINS_VARS}") == "true" ]]; then
|
if curl -sfX GET https://raw.githubusercontent.com/linuxserver/docker-swag/${br}/.github/workflows/package_trigger.yml > /dev/null 2>&1; then
|
||||||
echo "> [!WARNING]" >> $GITHUB_STEP_SUMMARY
|
echo "Triggering package trigger workflow for branch ${br}" >> $GITHUB_STEP_SUMMARY
|
||||||
echo "> Skipping branch ${br} due to \`skip_package_check\` being set in \`jenkins-vars.yml\`." >> $GITHUB_STEP_SUMMARY
|
|
||||||
skipped_branches="${skipped_branches}${br} "
|
|
||||||
elif grep -q "^swag_${br}" <<< "${SKIP_PACKAGE_TRIGGER}"; then
|
|
||||||
echo "> [!WARNING]" >> $GITHUB_STEP_SUMMARY
|
|
||||||
echo "> Github organizational variable \`SKIP_PACKAGE_TRIGGER\` contains \`swag_${br}\`; skipping trigger." >> $GITHUB_STEP_SUMMARY
|
|
||||||
skipped_branches="${skipped_branches}${br} "
|
|
||||||
elif [ $(curl -s https://ci.linuxserver.io/job/Docker-Pipeline-Builders/job/docker-swag/job/${br}/lastBuild/api/json | jq -r '.building') == "true" ]; then
|
|
||||||
echo "> [!WARNING]" >> $GITHUB_STEP_SUMMARY
|
|
||||||
echo "> There already seems to be an active build on Jenkins; skipping package trigger for ${br}" >> $GITHUB_STEP_SUMMARY
|
|
||||||
skipped_branches="${skipped_branches}${br} "
|
|
||||||
else
|
|
||||||
echo "> [!NOTE]" >> $GITHUB_STEP_SUMMARY
|
|
||||||
echo "> Triggering package trigger for branch ${br}" >> $GITHUB_STEP_SUMMARY
|
|
||||||
printf "> To disable, add \`swag_%s\` into the Github organizational variable \`SKIP_PACKAGE_TRIGGER\`.\n\n" "${br}" >> $GITHUB_STEP_SUMMARY
|
|
||||||
triggered_branches="${triggered_branches}${br} "
|
triggered_branches="${triggered_branches}${br} "
|
||||||
response=$(curl -iX POST \
|
|
||||||
https://ci.linuxserver.io/job/Docker-Pipeline-Builders/job/docker-swag/job/${br}/buildWithParameters?PACKAGE_CHECK=true \
|
|
||||||
--user ${{ secrets.JENKINS_USER }}:${{ secrets.JENKINS_TOKEN }} | grep -i location | sed "s|^[L|l]ocation: \(.*\)|\1|")
|
|
||||||
echo "Jenkins [job queue url](${response%$'\r'})" >> $GITHUB_STEP_SUMMARY
|
|
||||||
echo "Sleeping 10 seconds until job starts" >> $GITHUB_STEP_SUMMARY
|
|
||||||
sleep 10
|
|
||||||
buildurl=$(curl -s "${response%$'\r'}api/json" | jq -r '.executable.url')
|
|
||||||
buildurl="${buildurl%$'\r'}"
|
|
||||||
echo "Jenkins job [build url](${buildurl})" >> $GITHUB_STEP_SUMMARY
|
|
||||||
echo "Attempting to change the Jenkins job description" >> $GITHUB_STEP_SUMMARY
|
|
||||||
curl -iX POST \
|
curl -iX POST \
|
||||||
"${buildurl}submitDescription" \
|
-H "Authorization: token ${{ secrets.CR_PAT }}" \
|
||||||
--user ${{ secrets.JENKINS_USER }}:${{ secrets.JENKINS_TOKEN }} \
|
-H "Accept: application/vnd.github.v3+json" \
|
||||||
--data-urlencode "description=GHA package trigger https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}" \
|
-d "{\"ref\":\"refs/heads/${br}\"}" \
|
||||||
--data-urlencode "Submit=Submit"
|
https://api.github.com/repos/linuxserver/docker-swag/actions/workflows/package_trigger.yml/dispatches
|
||||||
sleep 20
|
sleep 30
|
||||||
|
else
|
||||||
|
echo "Skipping branch ${br} due to no package trigger workflow present." >> $GITHUB_STEP_SUMMARY
|
||||||
fi
|
fi
|
||||||
else
|
else
|
||||||
echo "Skipping branch ${br} due to being detected as dev branch." >> $GITHUB_STEP_SUMMARY
|
echo "Skipping branch ${br} due to being detected as dev branch." >> $GITHUB_STEP_SUMMARY
|
||||||
fi
|
fi
|
||||||
done
|
done
|
||||||
if [[ -n "${triggered_branches}" ]] || [[ -n "${skipped_branches}" ]]; then
|
echo "**** Package check build(s) triggered for branch(es): ${triggered_branches} ****"
|
||||||
if [[ -n "${triggered_branches}" ]]; then
|
echo "**** Notifying Discord ****"
|
||||||
NOTIFY_BRANCHES="**Triggered:** ${triggered_branches} \n"
|
curl -X POST -H "Content-Type: application/json" --data '{"avatar_url": "https://cdn.discordapp.com/avatars/354986384542662657/df91181b3f1cf0ef1592fbe18e0962d7.png","embeds": [{"color": 9802903,
|
||||||
fi
|
"description": "**Package Check Build(s) Triggered for swag** \n**Branch(es):** '"${triggered_branches}"' \n**Build URL:** '"https://ci.linuxserver.io/blue/organizations/jenkins/Docker-Pipeline-Builders%2Fdocker-swag/activity/"' \n"}],
|
||||||
if [[ -n "${skipped_branches}" ]]; then
|
"username": "Github Actions"}' ${{ secrets.DISCORD_WEBHOOK }}
|
||||||
NOTIFY_BRANCHES="${NOTIFY_BRANCHES}**Skipped:** ${skipped_branches} \n"
|
|
||||||
fi
|
|
||||||
echo "**** Package check build(s) triggered for branch(es): ${triggered_branches} ****"
|
|
||||||
echo "**** Notifying Discord ****"
|
|
||||||
curl -X POST -H "Content-Type: application/json" --data '{"avatar_url": "https://cdn.discordapp.com/avatars/354986384542662657/df91181b3f1cf0ef1592fbe18e0962d7.png","embeds": [{"color": 9802903,
|
|
||||||
"description": "**Package Check Build(s) Triggered for swag** \n'"${NOTIFY_BRANCHES}"'**Build URL:** '"https://ci.linuxserver.io/blue/organizations/jenkins/Docker-Pipeline-Builders%2Fdocker-swag/activity/"' \n"}],
|
|
||||||
"username": "Github Actions"}' ${{ secrets.DISCORD_WEBHOOK }}
|
|
||||||
fi
|
|
||||||
|
|||||||
@@ -131,7 +131,7 @@ RUN \
|
|||||||
certbot-dns-transip \
|
certbot-dns-transip \
|
||||||
certbot-dns-vultr \
|
certbot-dns-vultr \
|
||||||
certbot-plugin-gandi \
|
certbot-plugin-gandi \
|
||||||
cryptography \
|
cryptography==42.0.7 \
|
||||||
future \
|
future \
|
||||||
requests && \
|
requests && \
|
||||||
echo "**** enable OCSP stapling from base ****" && \
|
echo "**** enable OCSP stapling from base ****" && \
|
||||||
|
|||||||
@@ -131,7 +131,7 @@ RUN \
|
|||||||
certbot-dns-transip \
|
certbot-dns-transip \
|
||||||
certbot-dns-vultr \
|
certbot-dns-vultr \
|
||||||
certbot-plugin-gandi \
|
certbot-plugin-gandi \
|
||||||
cryptography \
|
cryptography==42.0.7 \
|
||||||
future \
|
future \
|
||||||
requests && \
|
requests && \
|
||||||
echo "**** enable OCSP stapling from base ****" && \
|
echo "**** enable OCSP stapling from base ****" && \
|
||||||
|
|||||||
60
Jenkinsfile
vendored
60
Jenkinsfile
vendored
@@ -82,7 +82,7 @@ pipeline {
|
|||||||
env.CODE_URL = 'https://github.com/' + env.LS_USER + '/' + env.LS_REPO + '/commit/' + env.GIT_COMMIT
|
env.CODE_URL = 'https://github.com/' + env.LS_USER + '/' + env.LS_REPO + '/commit/' + env.GIT_COMMIT
|
||||||
env.DOCKERHUB_LINK = 'https://hub.docker.com/r/' + env.DOCKERHUB_IMAGE + '/tags/'
|
env.DOCKERHUB_LINK = 'https://hub.docker.com/r/' + env.DOCKERHUB_IMAGE + '/tags/'
|
||||||
env.PULL_REQUEST = env.CHANGE_ID
|
env.PULL_REQUEST = env.CHANGE_ID
|
||||||
env.TEMPLATED_FILES = 'Jenkinsfile README.md LICENSE .editorconfig ./.github/CONTRIBUTING.md ./.github/FUNDING.yml ./.github/ISSUE_TEMPLATE/config.yml ./.github/ISSUE_TEMPLATE/issue.bug.yml ./.github/ISSUE_TEMPLATE/issue.feature.yml ./.github/PULL_REQUEST_TEMPLATE.md ./.github/workflows/external_trigger_scheduler.yml ./.github/workflows/greetings.yml ./.github/workflows/package_trigger_scheduler.yml ./.github/workflows/call_issue_pr_tracker.yml ./.github/workflows/call_issues_cron.yml ./.github/workflows/permissions.yml ./.github/workflows/external_trigger.yml ./root/donate.txt'
|
env.TEMPLATED_FILES = 'Jenkinsfile README.md LICENSE .editorconfig ./.github/CONTRIBUTING.md ./.github/FUNDING.yml ./.github/ISSUE_TEMPLATE/config.yml ./.github/ISSUE_TEMPLATE/issue.bug.yml ./.github/ISSUE_TEMPLATE/issue.feature.yml ./.github/PULL_REQUEST_TEMPLATE.md ./.github/workflows/external_trigger_scheduler.yml ./.github/workflows/greetings.yml ./.github/workflows/package_trigger_scheduler.yml ./.github/workflows/call_issue_pr_tracker.yml ./.github/workflows/call_issues_cron.yml ./.github/workflows/permissions.yml ./.github/workflows/external_trigger.yml ./.github/workflows/package_trigger.yml ./root/donate.txt'
|
||||||
}
|
}
|
||||||
sh '''#! /bin/bash
|
sh '''#! /bin/bash
|
||||||
echo "The default github branch detected as ${GH_DEFAULT_BRANCH}" '''
|
echo "The default github branch detected as ${GH_DEFAULT_BRANCH}" '''
|
||||||
@@ -311,7 +311,7 @@ pipeline {
|
|||||||
echo "Jenkinsfile is up to date."
|
echo "Jenkinsfile is up to date."
|
||||||
fi
|
fi
|
||||||
echo "Starting Stage 2 - Delete old templates"
|
echo "Starting Stage 2 - Delete old templates"
|
||||||
OLD_TEMPLATES=".github/ISSUE_TEMPLATE.md .github/ISSUE_TEMPLATE/issue.bug.md .github/ISSUE_TEMPLATE/issue.feature.md .github/workflows/call_invalid_helper.yml .github/workflows/stale.yml .github/workflows/package_trigger.yml"
|
OLD_TEMPLATES=".github/ISSUE_TEMPLATE.md .github/ISSUE_TEMPLATE/issue.bug.md .github/ISSUE_TEMPLATE/issue.feature.md .github/workflows/call_invalid_helper.yml .github/workflows/stale.yml"
|
||||||
for i in ${OLD_TEMPLATES}; do
|
for i in ${OLD_TEMPLATES}; do
|
||||||
if [[ -f "${i}" ]]; then
|
if [[ -f "${i}" ]]; then
|
||||||
TEMPLATES_TO_DELETE="${i} ${TEMPLATES_TO_DELETE}"
|
TEMPLATES_TO_DELETE="${i} ${TEMPLATES_TO_DELETE}"
|
||||||
@@ -719,14 +719,6 @@ pipeline {
|
|||||||
}
|
}
|
||||||
sh '''#! /bin/bash
|
sh '''#! /bin/bash
|
||||||
set -e
|
set -e
|
||||||
if grep -q 'docker-baseimage' <<< "${LS_REPO}"; then
|
|
||||||
echo "Detected baseimage, setting LSIO_FIRST_PARTY=true"
|
|
||||||
if [ -n "${CI_DOCKERENV}" ]; then
|
|
||||||
CI_DOCKERENV="LSIO_FIRST_PARTY=true|${CI_DOCKERENV}"
|
|
||||||
else
|
|
||||||
CI_DOCKERENV="LSIO_FIRST_PARTY=true"
|
|
||||||
fi
|
|
||||||
fi
|
|
||||||
docker pull ghcr.io/linuxserver/ci:latest
|
docker pull ghcr.io/linuxserver/ci:latest
|
||||||
if [ "${MULTIARCH}" == "true" ]; then
|
if [ "${MULTIARCH}" == "true" ]; then
|
||||||
docker pull ghcr.io/linuxserver/lsiodev-buildcache:arm64v8-${COMMIT_SHA}-${BUILD_NUMBER} --platform=arm64
|
docker pull ghcr.io/linuxserver/lsiodev-buildcache:arm64v8-${COMMIT_SHA}-${BUILD_NUMBER} --platform=arm64
|
||||||
@@ -739,7 +731,6 @@ pipeline {
|
|||||||
-e DOCKER_LOGS_TIMEOUT=\"${CI_DELAY}\" \
|
-e DOCKER_LOGS_TIMEOUT=\"${CI_DELAY}\" \
|
||||||
-e TAGS=\"${CI_TAGS}\" \
|
-e TAGS=\"${CI_TAGS}\" \
|
||||||
-e META_TAG=\"${META_TAG}\" \
|
-e META_TAG=\"${META_TAG}\" \
|
||||||
-e RELEASE_TAG=\"latest\" \
|
|
||||||
-e PORT=\"${CI_PORT}\" \
|
-e PORT=\"${CI_PORT}\" \
|
||||||
-e SSL=\"${CI_SSL}\" \
|
-e SSL=\"${CI_SSL}\" \
|
||||||
-e BASE=\"${DIST_IMAGE}\" \
|
-e BASE=\"${DIST_IMAGE}\" \
|
||||||
@@ -749,7 +740,6 @@ pipeline {
|
|||||||
-e WEB_SCREENSHOT=\"${CI_WEB}\" \
|
-e WEB_SCREENSHOT=\"${CI_WEB}\" \
|
||||||
-e WEB_AUTH=\"${CI_AUTH}\" \
|
-e WEB_AUTH=\"${CI_AUTH}\" \
|
||||||
-e WEB_PATH=\"${CI_WEBPATH}\" \
|
-e WEB_PATH=\"${CI_WEBPATH}\" \
|
||||||
-e NODE_NAME=\"${NODE_NAME}\" \
|
|
||||||
-t ghcr.io/linuxserver/ci:latest \
|
-t ghcr.io/linuxserver/ci:latest \
|
||||||
python3 test_build.py'''
|
python3 test_build.py'''
|
||||||
}
|
}
|
||||||
@@ -1017,45 +1007,17 @@ EOF
|
|||||||
git config --global --unset commit.gpgsign
|
git config --global --unset commit.gpgsign
|
||||||
'''
|
'''
|
||||||
script{
|
script{
|
||||||
env.JOB_DATE = sh(
|
|
||||||
script: '''date '+%Y-%m-%dT%H:%M:%S%:z' ''',
|
|
||||||
returnStdout: true).trim()
|
|
||||||
if (env.EXIT_STATUS == "ABORTED"){
|
if (env.EXIT_STATUS == "ABORTED"){
|
||||||
sh 'echo "build aborted"'
|
sh 'echo "build aborted"'
|
||||||
}else{
|
}
|
||||||
if (currentBuild.currentResult == "SUCCESS"){
|
else if (currentBuild.currentResult == "SUCCESS"){
|
||||||
if (env.GITHUBIMAGE =~ /lspipepr/){
|
sh ''' curl -X POST -H "Content-Type: application/json" --data '{"avatar_url": "https://raw.githubusercontent.com/linuxserver/docker-templates/master/linuxserver.io/img/jenkins-avatar.png","embeds": [{"color": 1681177,\
|
||||||
env.JOB_WEBHOOK_STATUS='Success'
|
"description": "**Build:** '${BUILD_NUMBER}'\\n**CI Results:** '${CI_URL}'\\n**ShellCheck Results:** '${SHELLCHECK_URL}'\\n**Status:** Success\\n**Job:** '${RUN_DISPLAY_URL}'\\n**Change:** '${CODE_URL}'\\n**External Release:**: '${RELEASE_LINK}'\\n**DockerHub:** '${DOCKERHUB_LINK}'\\n"}],\
|
||||||
env.JOB_WEBHOOK_COLOUR=3957028
|
"username": "Jenkins"}' ${BUILDS_DISCORD} '''
|
||||||
env.JOB_WEBHOOK_FOOTER='PR Build'
|
}
|
||||||
}else if (env.GITHUBIMAGE =~ /lsiodev/){
|
else {
|
||||||
env.JOB_WEBHOOK_STATUS='Success'
|
sh ''' curl -X POST -H "Content-Type: application/json" --data '{"avatar_url": "https://raw.githubusercontent.com/linuxserver/docker-templates/master/linuxserver.io/img/jenkins-avatar.png","embeds": [{"color": 16711680,\
|
||||||
env.JOB_WEBHOOK_COLOUR=3957028
|
"description": "**Build:** '${BUILD_NUMBER}'\\n**CI Results:** '${CI_URL}'\\n**ShellCheck Results:** '${SHELLCHECK_URL}'\\n**Status:** failure\\n**Job:** '${RUN_DISPLAY_URL}'\\n**Change:** '${CODE_URL}'\\n**External Release:**: '${RELEASE_LINK}'\\n**DockerHub:** '${DOCKERHUB_LINK}'\\n"}],\
|
||||||
env.JOB_WEBHOOK_FOOTER='Dev Build'
|
|
||||||
}else{
|
|
||||||
env.JOB_WEBHOOK_STATUS='Success'
|
|
||||||
env.JOB_WEBHOOK_COLOUR=1681177
|
|
||||||
env.JOB_WEBHOOK_FOOTER='Live Build'
|
|
||||||
}
|
|
||||||
}else{
|
|
||||||
if (env.GITHUBIMAGE =~ /lspipepr/){
|
|
||||||
env.JOB_WEBHOOK_STATUS='Failure'
|
|
||||||
env.JOB_WEBHOOK_COLOUR=12669523
|
|
||||||
env.JOB_WEBHOOK_FOOTER='PR Build'
|
|
||||||
}else if (env.GITHUBIMAGE =~ /lsiodev/){
|
|
||||||
env.JOB_WEBHOOK_STATUS='Failure'
|
|
||||||
env.JOB_WEBHOOK_COLOUR=12669523
|
|
||||||
env.JOB_WEBHOOK_FOOTER='Dev Build'
|
|
||||||
}else{
|
|
||||||
env.JOB_WEBHOOK_STATUS='Failure'
|
|
||||||
env.JOB_WEBHOOK_COLOUR=16711680
|
|
||||||
env.JOB_WEBHOOK_FOOTER='Live Build'
|
|
||||||
}
|
|
||||||
}
|
|
||||||
sh ''' curl -X POST -H "Content-Type: application/json" --data '{"avatar_url": "https://raw.githubusercontent.com/linuxserver/docker-templates/master/linuxserver.io/img/jenkins-avatar.png","embeds": [{"'color'": '${JOB_WEBHOOK_COLOUR}',\
|
|
||||||
"footer": {"text" : "'"${JOB_WEBHOOK_FOOTER}"'"},\
|
|
||||||
"timestamp": "'${JOB_DATE}'",\
|
|
||||||
"description": "**Build:** '${BUILD_NUMBER}'\\n**CI Results:** '${CI_URL}'\\n**ShellCheck Results:** '${SHELLCHECK_URL}'\\n**Status:** '${JOB_WEBHOOK_STATUS}'\\n**Job:** '${RUN_DISPLAY_URL}'\\n**Change:** '${CODE_URL}'\\n**External Release:**: '${RELEASE_LINK}'\\n**DockerHub:** '${DOCKERHUB_LINK}'\\n"}],\
|
|
||||||
"username": "Jenkins"}' ${BUILDS_DISCORD} '''
|
"username": "Jenkins"}' ${BUILDS_DISCORD} '''
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -227,7 +227,7 @@ Containers are configured using parameters passed at runtime (such as those abov
|
|||||||
| `-e VALIDATION=http` | Certbot validation method to use, options are `http` or `dns` (`dns` method also requires `DNSPLUGIN` variable set). |
|
| `-e VALIDATION=http` | Certbot validation method to use, options are `http` or `dns` (`dns` method also requires `DNSPLUGIN` variable set). |
|
||||||
| `-e SUBDOMAINS=www,` | Subdomains you'd like the cert to cover (comma separated, no spaces) ie. `www,ftp,cloud`. For a wildcard cert, set this *exactly* to `wildcard` (wildcard cert is available via `dns` validation only) |
|
| `-e SUBDOMAINS=www,` | Subdomains you'd like the cert to cover (comma separated, no spaces) ie. `www,ftp,cloud`. For a wildcard cert, set this *exactly* to `wildcard` (wildcard cert is available via `dns` validation only) |
|
||||||
| `-e CERTPROVIDER=` | Optionally define the cert provider. Set to `zerossl` for ZeroSSL certs (requires existing [ZeroSSL account](https://app.zerossl.com/signup) and the e-mail address entered in `EMAIL` env var). Otherwise defaults to Let's Encrypt. |
|
| `-e CERTPROVIDER=` | Optionally define the cert provider. Set to `zerossl` for ZeroSSL certs (requires existing [ZeroSSL account](https://app.zerossl.com/signup) and the e-mail address entered in `EMAIL` env var). Otherwise defaults to Let's Encrypt. |
|
||||||
| `-e DNSPLUGIN=cloudflare` | Required if `VALIDATION` is set to `dns`. Options are `acmedns`, `aliyun`, `azure`, `bunny`, `cloudflare`, `cpanel`, `desec`, `digitalocean`, `directadmin`, `dnsimple`, `dnsmadeeasy`, `dnspod`, `do`, `domeneshop`, `dreamhost`, `duckdns`, `dynu`, `freedns`, `gandi`, `gehirn`, `glesys`, `godaddy`, `google`, `he`, `hetzner`, `infomaniak`, `inwx`, `ionos`, `linode`, `loopia`, `luadns`, `namecheap`, `netcup`, `njalla`, `nsone`, `ovh`, `porkbun`, `rfc2136`, `route53`, `sakuracloud`, `standalone`, `transip`, and `vultr`. Also need to enter the credentials into the corresponding ini (or json for some plugins) file under `/config/dns-conf`. |
|
| `-e DNSPLUGIN=cloudflare` | Required if `VALIDATION` is set to `dns`. Options are `acmedns`, `aliyun`, `azure`, `bunny`, `cloudflare`, `cpanel`, `desec`, `digitalocean`, `directadmin`, `dnsimple`, `dnsmadeeasy`, `dnspod`, `do`, `domeneshop`, `dreamhost`, `duckdns`, `dynudns`, `freedns`, `gandi`, `gehirn`, `glesys`, `godaddy`, `google`, `he`, `hetzner`, `infomaniak`, `inwx`, `ionos`, `linode`, `loopia`, `luadns`, `namecheap`, `netcup`, `njalla`, `nsone`, `ovh`, `porkbun`, `rfc2136`, `route53`, `sakuracloud`, `standalone`, `transip`, and `vultr`. Also need to enter the credentials into the corresponding ini (or json for some plugins) file under `/config/dns-conf`. |
|
||||||
| `-e PROPAGATION=` | Optionally override (in seconds) the default propagation time for the dns plugins. |
|
| `-e PROPAGATION=` | Optionally override (in seconds) the default propagation time for the dns plugins. |
|
||||||
| `-e EMAIL=` | Optional e-mail address used for cert expiration notifications (Required for ZeroSSL). |
|
| `-e EMAIL=` | Optional e-mail address used for cert expiration notifications (Required for ZeroSSL). |
|
||||||
| `-e ONLY_SUBDOMAINS=false` | If you wish to get certs only for certain subdomains, but not the main domain (main domain may be hosted on another machine and cannot be validated), set this to `true` |
|
| `-e ONLY_SUBDOMAINS=false` | If you wish to get certs only for certain subdomains, but not the main domain (main domain may be hosted on another machine and cannot be validated), set this to `true` |
|
||||||
@@ -375,8 +375,7 @@ Below are the instructions for updating containers:
|
|||||||
|
|
||||||
### Image Update Notifications - Diun (Docker Image Update Notifier)
|
### Image Update Notifications - Diun (Docker Image Update Notifier)
|
||||||
|
|
||||||
>[!TIP]
|
**tip**: We recommend [Diun](https://crazymax.dev/diun/) for update notifications. Other tools that automatically update containers unattended are not recommended or supported.
|
||||||
>We recommend [Diun](https://crazymax.dev/diun/) for update notifications. Other tools that automatically update containers unattended are not recommended or supported.
|
|
||||||
|
|
||||||
## Building locally
|
## Building locally
|
||||||
|
|
||||||
@@ -401,7 +400,6 @@ Once registered you can define the dockerfile to use with `-f Dockerfile.aarch64
|
|||||||
|
|
||||||
## Versions
|
## Versions
|
||||||
|
|
||||||
* **21.10.24:** - Fix naming issue with Dynu plugin. If you are using Dynu, please make sure your credentials are set in /config/dns-conf/dynu.ini and your DNSPLUGIN variable is set to dynu (not dynudns).
|
|
||||||
* **30.08.24:** - Fix zerossl cert revocation.
|
* **30.08.24:** - Fix zerossl cert revocation.
|
||||||
* **24.07.14:** - Rebase to Alpine 3.20. Remove deprecated Google Domains certbot plugin. Existing users should update their nginx confs to avoid http2 deprecation warnings.
|
* **24.07.14:** - Rebase to Alpine 3.20. Remove deprecated Google Domains certbot plugin. Existing users should update their nginx confs to avoid http2 deprecation warnings.
|
||||||
* **01.07.24:** - Fall back to iptables-legacy if iptables doesn't work.
|
* **01.07.24:** - Fall back to iptables-legacy if iptables doesn't work.
|
||||||
|
|||||||
@@ -4,7 +4,7 @@ acme 2.11.0 python
|
|||||||
alpine-baselayout 3.6.5-r0 apk
|
alpine-baselayout 3.6.5-r0 apk
|
||||||
alpine-baselayout-data 3.6.5-r0 apk
|
alpine-baselayout-data 3.6.5-r0 apk
|
||||||
alpine-keys 2.4-r1 apk
|
alpine-keys 2.4-r1 apk
|
||||||
alpine-release 3.20.3-r0 apk
|
alpine-release 3.20.2-r0 apk
|
||||||
aom-libs 3.9.1-r0 apk
|
aom-libs 3.9.1-r0 apk
|
||||||
apache2-utils 2.4.62-r0 apk
|
apache2-utils 2.4.62-r0 apk
|
||||||
apk-tools 2.14.4-r0 apk
|
apk-tools 2.14.4-r0 apk
|
||||||
@@ -14,20 +14,20 @@ argon2-libs 20190702-r5 apk
|
|||||||
attrs 24.2.0 python
|
attrs 24.2.0 python
|
||||||
autocommand 2.2.2 python
|
autocommand 2.2.2 python
|
||||||
azure-common 1.1.28 python
|
azure-common 1.1.28 python
|
||||||
azure-core 1.32.0 python
|
azure-core 1.30.2 python
|
||||||
azure-identity 1.19.0 python
|
azure-identity 1.17.1 python
|
||||||
azure-mgmt-core 1.5.0 python
|
azure-mgmt-core 1.4.0 python
|
||||||
azure-mgmt-dns 8.2.0 python
|
azure-mgmt-dns 8.1.0 python
|
||||||
backports-tarfile 1.2.0 python
|
backports-tarfile 1.2.0 python
|
||||||
bash 5.2.26-r0 apk
|
bash 5.2.26-r0 apk
|
||||||
beautifulsoup4 4.12.3 python
|
beautifulsoup4 4.12.3 python
|
||||||
boto3 1.35.54 python
|
boto3 1.35.14 python
|
||||||
botocore 1.35.54 python
|
botocore 1.35.14 python
|
||||||
brotli-libs 1.1.0-r2 apk
|
brotli-libs 1.1.0-r2 apk
|
||||||
bs4 0.0.2 python
|
bs4 0.0.2 python
|
||||||
busybox 1.36.1-r29 apk
|
busybox 1.36.1-r29 apk
|
||||||
busybox-binsh 1.36.1-r29 apk
|
busybox-binsh 1.36.1-r29 apk
|
||||||
c-ares 1.33.1-r0 apk
|
c-ares 1.28.1-r0 apk
|
||||||
c-client 2007f-r15 apk
|
c-client 2007f-r15 apk
|
||||||
ca-certificates 20240705-r0 apk
|
ca-certificates 20240705-r0 apk
|
||||||
ca-certificates-bundle 20240705-r0 apk
|
ca-certificates-bundle 20240705-r0 apk
|
||||||
@@ -60,7 +60,7 @@ certbot-dns-he 1.0.0 python
|
|||||||
certbot-dns-hetzner 2.0.1 python
|
certbot-dns-hetzner 2.0.1 python
|
||||||
certbot-dns-infomaniak 0.2.2 python
|
certbot-dns-infomaniak 0.2.2 python
|
||||||
certbot-dns-inwx 2.2.0 python
|
certbot-dns-inwx 2.2.0 python
|
||||||
certbot-dns-ionos 2024.10.20 python
|
certbot-dns-ionos 2024.1.8 python
|
||||||
certbot-dns-linode 2.11.0 python
|
certbot-dns-linode 2.11.0 python
|
||||||
certbot-dns-loopia 1.0.1 python
|
certbot-dns-loopia 1.0.1 python
|
||||||
certbot-dns-luadns 2.11.0 python
|
certbot-dns-luadns 2.11.0 python
|
||||||
@@ -79,26 +79,26 @@ certbot-dns-vultr 1.1.0 python
|
|||||||
certbot-plugin-gandi 1.5.0 python
|
certbot-plugin-gandi 1.5.0 python
|
||||||
certifi 2024.8.30 python
|
certifi 2024.8.30 python
|
||||||
cffi 1.17.1 python
|
cffi 1.17.1 python
|
||||||
charset-normalizer 3.4.0 python
|
charset-normalizer 3.3.2 python
|
||||||
cloudflare 2.19.4 python
|
cloudflare 2.19.4 python
|
||||||
composer 2.8.1 binary
|
composer 2.7.9 binary
|
||||||
configargparse 1.7 python
|
configargparse 1.7 python
|
||||||
configobj 5.0.9 python
|
configobj 5.0.8 python
|
||||||
coreutils 9.5-r1 apk
|
coreutils 9.5-r1 apk
|
||||||
coreutils-env 9.5-r1 apk
|
coreutils-env 9.5-r1 apk
|
||||||
coreutils-fmt 9.5-r1 apk
|
coreutils-fmt 9.5-r1 apk
|
||||||
coreutils-sha512sum 9.5-r1 apk
|
coreutils-sha512sum 9.5-r1 apk
|
||||||
cryptography 43.0.3 python
|
cryptography 43.0.1 python
|
||||||
curl 8.9.1-r2 apk
|
curl 8.9.1-r1 apk
|
||||||
distro 1.9.0 python
|
distro 1.9.0 python
|
||||||
dns-lexicon 3.18.0 python
|
dns-lexicon 3.18.0 python
|
||||||
dnslib 0.9.25 python
|
dnslib 0.9.25 python
|
||||||
dnspython 2.7.0 python
|
dnspython 2.6.1 python
|
||||||
domeneshop 0.4.4 python
|
domeneshop 0.4.4 python
|
||||||
fail2ban 1.1.0 python
|
fail2ban 1.1.0 python
|
||||||
fail2ban 1.1.0-r0 apk
|
fail2ban 1.1.0-r0 apk
|
||||||
fail2ban-pyc 1.1.0-r0 apk
|
fail2ban-pyc 1.1.0-r0 apk
|
||||||
filelock 3.16.1 python
|
filelock 3.15.4 python
|
||||||
findutils 4.9.0-r5 apk
|
findutils 4.9.0-r5 apk
|
||||||
fontconfig 2.15.0-r1 apk
|
fontconfig 2.15.0-r1 apk
|
||||||
freetype 2.13.2-r0 apk
|
freetype 2.13.2-r0 apk
|
||||||
@@ -115,9 +115,9 @@ gnupg-keyboxd 2.4.5-r0 apk
|
|||||||
gnupg-utils 2.4.5-r0 apk
|
gnupg-utils 2.4.5-r0 apk
|
||||||
gnupg-wks-client 2.4.5-r0 apk
|
gnupg-wks-client 2.4.5-r0 apk
|
||||||
gnutls 3.8.5-r0 apk
|
gnutls 3.8.5-r0 apk
|
||||||
google-api-core 2.22.0 python
|
google-api-core 2.19.2 python
|
||||||
google-api-python-client 2.151.0 python
|
google-api-python-client 2.144.0 python
|
||||||
google-auth 2.35.0 python
|
google-auth 2.34.0 python
|
||||||
google-auth-httplib2 0.2.0 python
|
google-auth-httplib2 0.2.0 python
|
||||||
googleapis-common-protos 1.65.0 python
|
googleapis-common-protos 1.65.0 python
|
||||||
gpg 2.4.5-r0 apk
|
gpg 2.4.5-r0 apk
|
||||||
@@ -128,14 +128,13 @@ gpgv 2.4.5-r0 apk
|
|||||||
httplib2 0.22.0 python
|
httplib2 0.22.0 python
|
||||||
icu-data-en 74.2-r0 apk
|
icu-data-en 74.2-r0 apk
|
||||||
icu-libs 74.2-r0 apk
|
icu-libs 74.2-r0 apk
|
||||||
idna 3.10 python
|
idna 3.8 python
|
||||||
importlib-metadata 8.0.0 python
|
importlib-metadata 8.0.0 python
|
||||||
importlib-resources 6.4.0 python
|
importlib-resources 6.4.0 python
|
||||||
inflect 7.3.1 python
|
inflect 7.3.1 python
|
||||||
iptables 1.8.10-r3 apk
|
iptables 1.8.10-r3 apk
|
||||||
iptables-legacy 1.8.10-r3 apk
|
iptables-legacy 1.8.10-r3 apk
|
||||||
isodate 0.7.2 python
|
isodate 0.6.1 python
|
||||||
jaraco-collections 5.1.0 python
|
|
||||||
jaraco-context 5.3.0 python
|
jaraco-context 5.3.0 python
|
||||||
jaraco-functools 4.0.1 python
|
jaraco-functools 4.0.1 python
|
||||||
jaraco-text 3.12.1 python
|
jaraco-text 3.12.1 python
|
||||||
@@ -150,8 +149,8 @@ libattr 2.5.2-r0 apk
|
|||||||
libavif 1.0.4-r0 apk
|
libavif 1.0.4-r0 apk
|
||||||
libbsd 0.12.2-r0 apk
|
libbsd 0.12.2-r0 apk
|
||||||
libbz2 1.0.8-r6 apk
|
libbz2 1.0.8-r6 apk
|
||||||
libcrypto3 3.3.2-r1 apk
|
libcrypto3 3.3.2-r0 apk
|
||||||
libcurl 8.9.1-r2 apk
|
libcurl 8.9.1-r1 apk
|
||||||
libdav1d 1.4.2-r0 apk
|
libdav1d 1.4.2-r0 apk
|
||||||
libedit 20240517.3.1-r0 apk
|
libedit 20240517.3.1-r0 apk
|
||||||
libevent 2.1.12-r7 apk
|
libevent 2.1.12-r7 apk
|
||||||
@@ -168,17 +167,17 @@ libip4tc 1.8.10-r3 apk
|
|||||||
libip6tc 1.8.10-r3 apk
|
libip6tc 1.8.10-r3 apk
|
||||||
libjpeg-turbo 3.0.3-r0 apk
|
libjpeg-turbo 3.0.3-r0 apk
|
||||||
libksba 1.6.6-r0 apk
|
libksba 1.6.6-r0 apk
|
||||||
libldap 2.6.8-r0 apk
|
libldap 2.6.7-r0 apk
|
||||||
libmaxminddb-libs 1.9.1-r0 apk
|
libmaxminddb-libs 1.9.1-r0 apk
|
||||||
libmcrypt 2.5.8-r10 apk
|
libmcrypt 2.5.8-r10 apk
|
||||||
libmd 1.1.0-r0 apk
|
libmd 1.1.0-r0 apk
|
||||||
libmemcached-libs 1.1.4-r1 apk
|
libmemcached-libs 1.1.4-r1 apk
|
||||||
libmnl 1.0.5-r2 apk
|
libmnl 1.0.5-r2 apk
|
||||||
libncursesw 6.4_p20240420-r1 apk
|
libncursesw 6.4_p20240420-r0 apk
|
||||||
libnftnl 1.2.6-r0 apk
|
libnftnl 1.2.6-r0 apk
|
||||||
libpanelw 6.4_p20240420-r1 apk
|
libpanelw 6.4_p20240420-r0 apk
|
||||||
libpng 1.6.44-r0 apk
|
libpng 1.6.43-r0 apk
|
||||||
libpq 16.4-r0 apk
|
libpq 16.3-r0 apk
|
||||||
libproc2 4.0.4-r0 apk
|
libproc2 4.0.4-r0 apk
|
||||||
libpsl 0.21.5-r1 apk
|
libpsl 0.21.5-r1 apk
|
||||||
libsasl 2.1.28-r6 apk
|
libsasl 2.1.28-r6 apk
|
||||||
@@ -186,7 +185,7 @@ libseccomp 2.5.5-r1 apk
|
|||||||
libsharpyuv 1.3.2-r0 apk
|
libsharpyuv 1.3.2-r0 apk
|
||||||
libsm 1.2.4-r4 apk
|
libsm 1.2.4-r4 apk
|
||||||
libsodium 1.0.19-r0 apk
|
libsodium 1.0.19-r0 apk
|
||||||
libssl3 3.3.2-r1 apk
|
libssl3 3.3.2-r0 apk
|
||||||
libstdc++ 13.2.1_git20240309-r0 apk
|
libstdc++ 13.2.1_git20240309-r0 apk
|
||||||
libtasn1 4.19.0-r2 apk
|
libtasn1 4.19.0-r2 apk
|
||||||
libunistring 1.2-r0 apk
|
libunistring 1.2-r0 apk
|
||||||
@@ -218,7 +217,7 @@ musl 1.2.5-r0 apk
|
|||||||
musl-utils 1.2.5-r0 apk
|
musl-utils 1.2.5-r0 apk
|
||||||
my-test-package 1.0 python
|
my-test-package 1.0 python
|
||||||
nano 8.0-r0 apk
|
nano 8.0-r0 apk
|
||||||
ncurses-terminfo-base 6.4_p20240420-r1 apk
|
ncurses-terminfo-base 6.4_p20240420-r0 apk
|
||||||
netcat-openbsd 1.226-r0 apk
|
netcat-openbsd 1.226-r0 apk
|
||||||
nettle 3.9.1-r0 apk
|
nettle 3.9.1-r0 apk
|
||||||
nghttp2-libs 1.62.1-r0 apk
|
nghttp2-libs 1.62.1-r0 apk
|
||||||
@@ -243,7 +242,7 @@ nginx-mod-stream-geoip2 1.26.2-r0 apk
|
|||||||
nginx-vim 1.26.2-r0 apk
|
nginx-vim 1.26.2-r0 apk
|
||||||
npth 1.6-r4 apk
|
npth 1.6-r4 apk
|
||||||
oniguruma 6.9.9-r0 apk
|
oniguruma 6.9.9-r0 apk
|
||||||
openssl 3.3.2-r1 apk
|
openssl 3.3.2-r0 apk
|
||||||
p11-kit 0.25.3-r0 apk
|
p11-kit 0.25.3-r0 apk
|
||||||
packaging 24.1 python
|
packaging 24.1 python
|
||||||
parsedatetime 2.6 python
|
parsedatetime 2.6 python
|
||||||
@@ -252,91 +251,91 @@ pcre2 10.43-r0 apk
|
|||||||
perl 5.38.2-r0 apk
|
perl 5.38.2-r0 apk
|
||||||
perl-error 0.17029-r2 apk
|
perl-error 0.17029-r2 apk
|
||||||
perl-git 2.45.2-r0 apk
|
perl-git 2.45.2-r0 apk
|
||||||
php83 8.3.13-r0 apk
|
php83 8.3.10-r0 apk
|
||||||
php83-bcmath 8.3.13-r0 apk
|
php83-bcmath 8.3.10-r0 apk
|
||||||
php83-bz2 8.3.13-r0 apk
|
php83-bz2 8.3.10-r0 apk
|
||||||
php83-common 8.3.13-r0 apk
|
php83-common 8.3.10-r0 apk
|
||||||
php83-ctype 8.3.13-r0 apk
|
php83-ctype 8.3.10-r0 apk
|
||||||
php83-curl 8.3.13-r0 apk
|
php83-curl 8.3.10-r0 apk
|
||||||
php83-dom 8.3.13-r0 apk
|
php83-dom 8.3.10-r0 apk
|
||||||
php83-exif 8.3.13-r0 apk
|
php83-exif 8.3.10-r0 apk
|
||||||
php83-fileinfo 8.3.13-r0 apk
|
php83-fileinfo 8.3.10-r0 apk
|
||||||
php83-fpm 8.3.13-r0 apk
|
php83-fpm 8.3.10-r0 apk
|
||||||
php83-ftp 8.3.13-r0 apk
|
php83-ftp 8.3.10-r0 apk
|
||||||
php83-gd 8.3.13-r0 apk
|
php83-gd 8.3.10-r0 apk
|
||||||
php83-gmp 8.3.13-r0 apk
|
php83-gmp 8.3.10-r0 apk
|
||||||
php83-iconv 8.3.13-r0 apk
|
php83-iconv 8.3.10-r0 apk
|
||||||
php83-imap 8.3.13-r0 apk
|
php83-imap 8.3.10-r0 apk
|
||||||
php83-intl 8.3.13-r0 apk
|
php83-intl 8.3.10-r0 apk
|
||||||
php83-ldap 8.3.13-r0 apk
|
php83-ldap 8.3.10-r0 apk
|
||||||
php83-mbstring 8.3.13-r0 apk
|
php83-mbstring 8.3.10-r0 apk
|
||||||
php83-mysqli 8.3.13-r0 apk
|
php83-mysqli 8.3.10-r0 apk
|
||||||
php83-mysqlnd 8.3.13-r0 apk
|
php83-mysqlnd 8.3.10-r0 apk
|
||||||
php83-opcache 8.3.13-r0 apk
|
php83-opcache 8.3.10-r0 apk
|
||||||
php83-openssl 8.3.13-r0 apk
|
php83-openssl 8.3.10-r0 apk
|
||||||
php83-pdo 8.3.13-r0 apk
|
php83-pdo 8.3.10-r0 apk
|
||||||
php83-pdo_mysql 8.3.13-r0 apk
|
php83-pdo_mysql 8.3.10-r0 apk
|
||||||
php83-pdo_odbc 8.3.13-r0 apk
|
php83-pdo_odbc 8.3.10-r0 apk
|
||||||
php83-pdo_pgsql 8.3.13-r0 apk
|
php83-pdo_pgsql 8.3.10-r0 apk
|
||||||
php83-pdo_sqlite 8.3.13-r0 apk
|
php83-pdo_sqlite 8.3.10-r0 apk
|
||||||
php83-pear 8.3.13-r0 apk
|
php83-pear 8.3.10-r0 apk
|
||||||
php83-pecl-apcu 5.1.23-r0 apk
|
php83-pecl-apcu 5.1.23-r0 apk
|
||||||
php83-pecl-igbinary 3.2.15-r0 apk
|
php83-pecl-igbinary 3.2.15-r0 apk
|
||||||
php83-pecl-mcrypt 1.0.7-r0 apk
|
php83-pecl-mcrypt 1.0.7-r0 apk
|
||||||
php83-pecl-memcached 3.3.0-r0 apk
|
php83-pecl-memcached 3.2.0-r0 apk
|
||||||
php83-pecl-msgpack 2.2.0-r2 apk
|
php83-pecl-msgpack 2.2.0-r2 apk
|
||||||
php83-pecl-redis 6.1.0-r0 apk
|
php83-pecl-redis 6.0.2-r0 apk
|
||||||
php83-pgsql 8.3.13-r0 apk
|
php83-pgsql 8.3.10-r0 apk
|
||||||
php83-phar 8.3.13-r0 apk
|
php83-phar 8.3.10-r0 apk
|
||||||
php83-posix 8.3.13-r0 apk
|
php83-posix 8.3.10-r0 apk
|
||||||
php83-session 8.3.13-r0 apk
|
php83-session 8.3.10-r0 apk
|
||||||
php83-simplexml 8.3.13-r0 apk
|
php83-simplexml 8.3.10-r0 apk
|
||||||
php83-soap 8.3.13-r0 apk
|
php83-soap 8.3.10-r0 apk
|
||||||
php83-sockets 8.3.13-r0 apk
|
php83-sockets 8.3.10-r0 apk
|
||||||
php83-sodium 8.3.13-r0 apk
|
php83-sodium 8.3.10-r0 apk
|
||||||
php83-sqlite3 8.3.13-r0 apk
|
php83-sqlite3 8.3.10-r0 apk
|
||||||
php83-tokenizer 8.3.13-r0 apk
|
php83-tokenizer 8.3.10-r0 apk
|
||||||
php83-xml 8.3.13-r0 apk
|
php83-xml 8.3.10-r0 apk
|
||||||
php83-xmlreader 8.3.13-r0 apk
|
php83-xmlreader 8.3.10-r0 apk
|
||||||
php83-xmlwriter 8.3.13-r0 apk
|
php83-xmlwriter 8.3.10-r0 apk
|
||||||
php83-xsl 8.3.13-r0 apk
|
php83-xsl 8.3.10-r0 apk
|
||||||
php83-zip 8.3.13-r0 apk
|
php83-zip 8.3.10-r0 apk
|
||||||
pinentry 1.3.0-r0 apk
|
pinentry 1.3.0-r0 apk
|
||||||
pip 24.3.1 python
|
pip 24.2 python
|
||||||
pkb-client 1.2 python
|
pkb-client 1.2 python
|
||||||
platformdirs 4.2.2 python
|
platformdirs 4.2.2 python
|
||||||
popt 1.19-r3 apk
|
popt 1.19-r3 apk
|
||||||
portalocker 2.10.1 python
|
portalocker 2.10.1 python
|
||||||
procps-ng 4.0.4-r0 apk
|
procps-ng 4.0.4-r0 apk
|
||||||
proto-plus 1.25.0 python
|
proto-plus 1.24.0 python
|
||||||
protobuf 5.28.3 python
|
protobuf 5.28.0 python
|
||||||
pyacmedns 0.4 python
|
pyacmedns 0.4 python
|
||||||
pyasn1 0.6.1 python
|
pyasn1 0.6.0 python
|
||||||
pyasn1-modules 0.4.1 python
|
pyasn1-modules 0.4.0 python
|
||||||
pyc 3.12.7-r0 apk
|
pyc 3.12.3-r2 apk
|
||||||
pycparser 2.22 python
|
pycparser 2.22 python
|
||||||
pyjwt 2.9.0 python
|
pyjwt 2.9.0 python
|
||||||
pynamecheap 0.0.3 python
|
pynamecheap 0.0.3 python
|
||||||
pyopenssl 24.2.1 python
|
pyopenssl 24.2.1 python
|
||||||
pyotp 2.9.0 python
|
pyotp 2.9.0 python
|
||||||
pyparsing 3.2.0 python
|
pyparsing 3.1.4 python
|
||||||
pyrfc3339 1.1 python
|
pyrfc3339 1.1 python
|
||||||
python-dateutil 2.9.0.post0 python
|
python-dateutil 2.9.0.post0 python
|
||||||
python-digitalocean 1.17.0 python
|
python-digitalocean 1.17.0 python
|
||||||
python-transip 0.6.0 python
|
python-transip 0.6.0 python
|
||||||
python3 3.12.7-r0 apk
|
python3 3.12.3-r2 apk
|
||||||
python3-pyc 3.12.7-r0 apk
|
python3-pyc 3.12.3-r2 apk
|
||||||
python3-pycache-pyc0 3.12.7-r0 apk
|
python3-pycache-pyc0 3.12.3-r2 apk
|
||||||
pytz 2024.2 python
|
pytz 2024.1 python
|
||||||
pyyaml 6.0.2 python
|
pyyaml 6.0.2 python
|
||||||
readline 8.2.10-r0 apk
|
readline 8.2.10-r0 apk
|
||||||
requests 2.32.3 python
|
requests 2.32.3 python
|
||||||
requests-file 2.1.0 python
|
requests-file 2.1.0 python
|
||||||
requests-mock 1.12.1 python
|
requests-mock 1.12.1 python
|
||||||
rsa 4.9 python
|
rsa 4.9 python
|
||||||
s3transfer 0.10.3 python
|
s3transfer 0.10.2 python
|
||||||
scanelf 1.3.7-r2 apk
|
scanelf 1.3.7-r2 apk
|
||||||
setuptools 75.3.0 python
|
setuptools 74.1.2 python
|
||||||
shadow 4.15.1-r0 apk
|
shadow 4.15.1-r0 apk
|
||||||
six 1.16.0 python
|
six 1.16.0 python
|
||||||
skalibs 2.14.1.1-r0 apk
|
skalibs 2.14.1.1-r0 apk
|
||||||
@@ -348,10 +347,10 @@ tldextract 5.1.2 python
|
|||||||
tomli 2.0.1 python
|
tomli 2.0.1 python
|
||||||
typeguard 4.3.0 python
|
typeguard 4.3.0 python
|
||||||
typing-extensions 4.12.2 python (+1 duplicate)
|
typing-extensions 4.12.2 python (+1 duplicate)
|
||||||
tzdata 2024b-r0 apk
|
tzdata 2024a-r1 apk
|
||||||
unixodbc 2.3.12-r0 apk
|
unixodbc 2.3.12-r0 apk
|
||||||
uritemplate 4.1.1 python
|
uritemplate 4.1.1 python
|
||||||
urllib3 2.2.3 python
|
urllib3 2.2.2 python
|
||||||
utmps-libs 0.1.2.2-r1 apk
|
utmps-libs 0.1.2.2-r1 apk
|
||||||
wheel 0.43.0 python
|
wheel 0.43.0 python
|
||||||
wheel 0.44.0 python
|
wheel 0.44.0 python
|
||||||
@@ -359,5 +358,5 @@ whois 5.5.23-r0 apk
|
|||||||
xz-libs 5.6.2-r0 apk
|
xz-libs 5.6.2-r0 apk
|
||||||
zipp 3.19.2 python
|
zipp 3.19.2 python
|
||||||
zlib 1.3.1-r1 apk
|
zlib 1.3.1-r1 apk
|
||||||
zope-interface 7.1.1 python
|
zope-interface 7.0.3 python
|
||||||
zstd-libs 1.5.6-r0 apk
|
zstd-libs 1.5.6-r0 apk
|
||||||
|
|||||||
@@ -34,7 +34,7 @@ opt_param_usage_include_env: true
|
|||||||
opt_param_env_vars:
|
opt_param_env_vars:
|
||||||
- { env_var: "SUBDOMAINS", env_value: "www,", desc: "Subdomains you'd like the cert to cover (comma separated, no spaces) ie. `www,ftp,cloud`. For a wildcard cert, set this *exactly* to `wildcard` (wildcard cert is available via `dns` validation only)" }
|
- { env_var: "SUBDOMAINS", env_value: "www,", desc: "Subdomains you'd like the cert to cover (comma separated, no spaces) ie. `www,ftp,cloud`. For a wildcard cert, set this *exactly* to `wildcard` (wildcard cert is available via `dns` validation only)" }
|
||||||
- { env_var: "CERTPROVIDER", env_value: "", desc: "Optionally define the cert provider. Set to `zerossl` for ZeroSSL certs (requires existing [ZeroSSL account](https://app.zerossl.com/signup) and the e-mail address entered in `EMAIL` env var). Otherwise defaults to Let's Encrypt." }
|
- { env_var: "CERTPROVIDER", env_value: "", desc: "Optionally define the cert provider. Set to `zerossl` for ZeroSSL certs (requires existing [ZeroSSL account](https://app.zerossl.com/signup) and the e-mail address entered in `EMAIL` env var). Otherwise defaults to Let's Encrypt." }
|
||||||
- { env_var: "DNSPLUGIN", env_value: "cloudflare", desc: "Required if `VALIDATION` is set to `dns`. Options are `acmedns`, `aliyun`, `azure`, `bunny`, `cloudflare`, `cpanel`, `desec`, `digitalocean`, `directadmin`, `dnsimple`, `dnsmadeeasy`, `dnspod`, `do`, `domeneshop`, `dreamhost`, `duckdns`, `dynu`, `freedns`, `gandi`, `gehirn`, `glesys`, `godaddy`, `google`, `he`, `hetzner`, `infomaniak`, `inwx`, `ionos`, `linode`, `loopia`, `luadns`, `namecheap`, `netcup`, `njalla`, `nsone`, `ovh`, `porkbun`, `rfc2136`, `route53`, `sakuracloud`, `standalone`, `transip`, and `vultr`. Also need to enter the credentials into the corresponding ini (or json for some plugins) file under `/config/dns-conf`." }
|
- { env_var: "DNSPLUGIN", env_value: "cloudflare", desc: "Required if `VALIDATION` is set to `dns`. Options are `acmedns`, `aliyun`, `azure`, `bunny`, `cloudflare`, `cpanel`, `desec`, `digitalocean`, `directadmin`, `dnsimple`, `dnsmadeeasy`, `dnspod`, `do`, `domeneshop`, `dreamhost`, `duckdns`, `dynudns`, `freedns`, `gandi`, `gehirn`, `glesys`, `godaddy`, `google`, `he`, `hetzner`, `infomaniak`, `inwx`, `ionos`, `linode`, `loopia`, `luadns`, `namecheap`, `netcup`, `njalla`, `nsone`, `ovh`, `porkbun`, `rfc2136`, `route53`, `sakuracloud`, `standalone`, `transip`, and `vultr`. Also need to enter the credentials into the corresponding ini (or json for some plugins) file under `/config/dns-conf`." }
|
||||||
- { env_var: "PROPAGATION", env_value: "", desc: "Optionally override (in seconds) the default propagation time for the dns plugins." }
|
- { env_var: "PROPAGATION", env_value: "", desc: "Optionally override (in seconds) the default propagation time for the dns plugins." }
|
||||||
- { env_var: "EMAIL", env_value: "", desc: "Optional e-mail address used for cert expiration notifications (Required for ZeroSSL)." }
|
- { env_var: "EMAIL", env_value: "", desc: "Optional e-mail address used for cert expiration notifications (Required for ZeroSSL)." }
|
||||||
- { env_var: "ONLY_SUBDOMAINS", env_value: "false", desc: "If you wish to get certs only for certain subdomains, but not the main domain (main domain may be hosted on another machine and cannot be validated), set this to `true`" }
|
- { env_var: "ONLY_SUBDOMAINS", env_value: "false", desc: "If you wish to get certs only for certain subdomains, but not the main domain (main domain may be hosted on another machine and cannot be validated), set this to `true`" }
|
||||||
@@ -140,7 +140,6 @@ app_setup_block: |
|
|||||||
|
|
||||||
# changelog
|
# changelog
|
||||||
changelogs:
|
changelogs:
|
||||||
- { date: "21.10.24:", desc: "Fix naming issue with Dynu plugin. If you are using Dynu, please make sure your credentials are set in /config/dns-conf/dynu.ini and your DNSPLUGIN variable is set to dynu (not dynudns)." }
|
|
||||||
- { date: "30.08.24:", desc: "Fix zerossl cert revocation." }
|
- { date: "30.08.24:", desc: "Fix zerossl cert revocation." }
|
||||||
- { date: "24.07.14:", desc: "Rebase to Alpine 3.20. Remove deprecated Google Domains certbot plugin. Existing users should update their nginx confs to avoid http2 deprecation warnings."}
|
- { date: "24.07.14:", desc: "Rebase to Alpine 3.20. Remove deprecated Google Domains certbot plugin. Existing users should update their nginx confs to avoid http2 deprecation warnings."}
|
||||||
- { date: "01.07.24:", desc: "Fall back to iptables-legacy if iptables doesn't work." }
|
- { date: "01.07.24:", desc: "Fall back to iptables-legacy if iptables doesn't work." }
|
||||||
|
|||||||
0
root/app/le-renew.sh
Normal file → Executable file
0
root/app/le-renew.sh
Normal file → Executable file
2
root/defaults/etc/letsencrypt/renewal-hooks/deploy/10-default
Normal file → Executable file
2
root/defaults/etc/letsencrypt/renewal-hooks/deploy/10-default
Normal file → Executable file
@@ -1,7 +1,9 @@
|
|||||||
#!/usr/bin/with-contenv bash
|
#!/usr/bin/with-contenv bash
|
||||||
# shellcheck shell=bash
|
# shellcheck shell=bash
|
||||||
|
# Notice: This file will be overwritten when updated by lsio. Add your custom scripts into a new file in this folder.
|
||||||
|
|
||||||
cd /config/keys/letsencrypt || exit 1
|
cd /config/keys/letsencrypt || exit 1
|
||||||
|
echo "**** Generating pfx and fullchain bundle certs ****"
|
||||||
openssl pkcs12 -export -out privkey.pfx -inkey privkey.pem -in cert.pem -certfile chain.pem -passout pass:
|
openssl pkcs12 -export -out privkey.pfx -inkey privkey.pem -in cert.pem -certfile chain.pem -passout pass:
|
||||||
sleep 1
|
sleep 1
|
||||||
cat {privkey,fullchain}.pem >priv-fullchain-bundle.pem
|
cat {privkey,fullchain}.pem >priv-fullchain-bundle.pem
|
||||||
|
|||||||
3
root/defaults/etc/letsencrypt/renewal-hooks/post/10-nginx
Normal file → Executable file
3
root/defaults/etc/letsencrypt/renewal-hooks/post/10-nginx
Normal file → Executable file
@@ -1,15 +1,18 @@
|
|||||||
#!/usr/bin/with-contenv bash
|
#!/usr/bin/with-contenv bash
|
||||||
# shellcheck shell=bash
|
# shellcheck shell=bash
|
||||||
|
# Notice: This file will be overwritten when updated by lsio. Add your custom scripts into a new file in this folder.
|
||||||
|
|
||||||
# shellcheck source=/dev/null
|
# shellcheck source=/dev/null
|
||||||
. /config/.donoteditthisfile.conf
|
. /config/.donoteditthisfile.conf
|
||||||
|
|
||||||
if [[ ! "${ORIGVALIDATION}" = "dns" ]] && [[ ! "${ORIGVALIDATION}" = "duckdns" ]]; then
|
if [[ ! "${ORIGVALIDATION}" = "dns" ]] && [[ ! "${ORIGVALIDATION}" = "duckdns" ]]; then
|
||||||
if pgrep -f "s6-supervise svc-nginx" >/dev/null; then
|
if pgrep -f "s6-supervise svc-nginx" >/dev/null; then
|
||||||
|
echo "**** Starting Nginx ****"
|
||||||
s6-svc -u /run/service/svc-nginx
|
s6-svc -u /run/service/svc-nginx
|
||||||
fi
|
fi
|
||||||
else
|
else
|
||||||
if pgrep -f "nginx:" >/dev/null; then
|
if pgrep -f "nginx:" >/dev/null; then
|
||||||
|
echo "**** Reloading Nginx to load the new cert ****"
|
||||||
s6-svc -h /run/service/svc-nginx
|
s6-svc -h /run/service/svc-nginx
|
||||||
fi
|
fi
|
||||||
fi
|
fi
|
||||||
|
|||||||
2
root/defaults/etc/letsencrypt/renewal-hooks/pre/10-nginx
Normal file → Executable file
2
root/defaults/etc/letsencrypt/renewal-hooks/pre/10-nginx
Normal file → Executable file
@@ -1,11 +1,13 @@
|
|||||||
#!/usr/bin/with-contenv bash
|
#!/usr/bin/with-contenv bash
|
||||||
# shellcheck shell=bash
|
# shellcheck shell=bash
|
||||||
|
# Notice: This file will be overwritten when updated by lsio. Add your custom scripts into a new file in this folder.
|
||||||
|
|
||||||
# shellcheck source=/dev/null
|
# shellcheck source=/dev/null
|
||||||
. /config/.donoteditthisfile.conf
|
. /config/.donoteditthisfile.conf
|
||||||
|
|
||||||
if [[ ! "${ORIGVALIDATION}" = "dns" ]] && [[ ! "${ORIGVALIDATION}" = "duckdns" ]]; then
|
if [[ ! "${ORIGVALIDATION}" = "dns" ]] && [[ ! "${ORIGVALIDATION}" = "duckdns" ]]; then
|
||||||
if pgrep -f "nginx:" >/dev/null; then
|
if pgrep -f "nginx:" >/dev/null; then
|
||||||
|
echo "**** Stopping Nginx in preparation of cert generation/renewal ****"
|
||||||
s6-svc -d /run/service/svc-nginx
|
s6-svc -d /run/service/svc-nginx
|
||||||
fi
|
fi
|
||||||
fi
|
fi
|
||||||
|
|||||||
@@ -68,14 +68,9 @@ lsiown -R abc:abc /config/dns-conf
|
|||||||
|
|
||||||
# copy default renewal hooks
|
# copy default renewal hooks
|
||||||
chmod -R +x /defaults/etc/letsencrypt/renewal-hooks
|
chmod -R +x /defaults/etc/letsencrypt/renewal-hooks
|
||||||
cp -nR /defaults/etc/letsencrypt/renewal-hooks/* /config/etc/letsencrypt/renewal-hooks/ 2> >(grep -v 'cp: not replacing')
|
cp -Rf /defaults/etc/letsencrypt/renewal-hooks/* /config/etc/letsencrypt/renewal-hooks/ 2> >(grep -v 'cp: not replacing')
|
||||||
lsiown -R abc:abc /config/etc/letsencrypt/renewal-hooks
|
lsiown -R abc:abc /config/etc/letsencrypt/renewal-hooks
|
||||||
|
|
||||||
# replace nginx service location in renewal hooks
|
|
||||||
find /config/etc/letsencrypt/renewal-hooks/ -type f -exec sed -i 's|/run/service/nginx|/run/service/svc-nginx|g' {} \;
|
|
||||||
find /config/etc/letsencrypt/renewal-hooks/ -type f -exec sed -i 's|/var/run/s6/services/nginx|/run/service/svc-nginx|g' {} \;
|
|
||||||
find /config/etc/letsencrypt/renewal-hooks/ -type f -exec sed -i 's|s6-supervise nginx|s6-supervise svc-nginx|g' {} \;
|
|
||||||
|
|
||||||
# create original config file if it doesn't exist, move non-hidden legacy file to hidden
|
# create original config file if it doesn't exist, move non-hidden legacy file to hidden
|
||||||
if [[ -f "/config/donoteditthisfile.conf" ]]; then
|
if [[ -f "/config/donoteditthisfile.conf" ]]; then
|
||||||
mv /config/donoteditthisfile.conf /config/.donoteditthisfile.conf
|
mv /config/donoteditthisfile.conf /config/.donoteditthisfile.conf
|
||||||
|
|||||||
Reference in New Issue
Block a user