Use Zope for challenge. See README-zope.md for the detail.

ba3ee2e0 · Kazuhiko Shiozaki · d5b28586 · ba3ee2e0 · ba3ee2e0
Commit ba3ee2e0 authored May 23, 2016 by Kazuhiko Shiozaki
Hide whitespace changes
Inline Side-by-side

Showing with 14 additions and 0 deletions

README-zope.md README-zope.md +12 -0

letsencrypt.sh letsencrypt.sh +2 -0

No files found.
--- a/README-zope.md
+++ b/README-zope.md
+First, prepare target Zope folder beforehand so that URL like http://example.com/.well-known/acme-challenge/xxx works.
+
+Set following values in the config file:
+- URL=http://example.com/.well-known/acme-challenge
+- USER=zope_user
+- PASSWORD=zope_password
+
+Now you can invoke the script like :
+
+```text
+./letsencrypt.sh --cron --domain example.com --config path/to/config
+```
--- a/letsencrypt.sh
+++ b/letsencrypt.sh
@@ -403,6 +403,7 @@ sign_csr() {
        # Store challenge response in well-known location and make world-readable (so that a webserver can access it)
        printf '%s' "${keyauth}" > "${WELLKNOWN}/${challenge_token}"
        chmod a+r "${WELLKNOWN}/${challenge_token}"
+        curl -u "${USER}:${PASSWORD}" -F "id=${challenge_token}" -F "file=@${WELLKNOWN}/${challenge_token}" "${URL}/manage_addFile"
        keyauth_hook="${keyauth}"
        ;;
      "dns-01")
@@ -446,6 +447,7 @@ sign_csr() {
    done

    [[ "${CHALLENGETYPE}" = "http-01" ]] && rm -f "${WELLKNOWN}/${challenge_token}"
+    [[ "${CHALLENGETYPE}" = "http-01" ]] && curl -u "${USER}:${PASSWORD}" -F "ids:list=${challenge_token}" "${URL}/manage_delObjects"

    # Wait for hook script to clean the challenge if used
    if [[ -n "${HOOK}" ]] && [[ "${HOOK_CHAIN}" != "yes" ]] && [[ -n "${challenge_token}" ]]; then