yosoyhendrix
/
vesta


			
							12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091
							#!/bin/bash
# info: update letsencrypt ssl certificates
# options: NONE
#
# The function for renew letsencrypt expired ssl certificate for all users


#----------------------------------------------------------#
#                    Variable&Function                     #
#----------------------------------------------------------#

# Importing system enviroment  as we run this script
# mostly by cron wich not read it by itself
source /etc/profile

# Includes
source $VESTA/func/main.sh
source $VESTA/conf/vesta.conf


#----------------------------------------------------------#
#                       Action                             #
#----------------------------------------------------------#

# Defining user list
users=$($BIN/v-list-users | tail -n+3 | awk '{ print $1 }')

# Checking users
for user in $users; do
    USER_DATA=$VESTA/data/users/$user
    # Checking user certificates
    lecounter=0
    for domain in $(search_objects 'web' 'LETSENCRYPT' 'yes' 'DOMAIN'); do
        # Working on Web domain check - if is suspended
        webSuspended=$(grep "DOMAIN='$domain'" $USER_DATA/web.conf |grep "SUSPENDED='no")
        if [ ! -z "$webSuspended" ]; then
                continue;
        fi;
        # Working on DNS domain check - if is suspended
        dnsSuspended=$(grep "DOMAIN='$domain'" $USER_DATA/dns.conf |grep "SUSPENDED='no")
        if [  ! -z "$dnsSuspended" ]; then
            continue;
        fi;
        #dunno if this is needed, but i will ut it in the same way as web and dns
        # Working on MAIL domain check - if is suspended
        mailSuspended=$(grep "DOMAIN='$domain'" $USER_DATA/mail.conf |grep "SUSPENDED='no")
        if [  ! -z "$mailSuspended" ]; then
            continue;
        fi
        crt="$VESTA/data/users/$user/ssl/$domain.crt"
        crt_data=$(openssl x509 -text -in "$crt")
        expire=$(echo "$crt_data" |grep "Not After")
        expire=$(echo "$expire" |cut -f 2,3,4 -d :)
        expire=$(date -d "$expire" +%s)
        now=$(date +%s)
        expire=$((expire - now))
        expire=$((expire / 86400))
        domain=$(basename $crt |sed -e "s/.crt$//")
        if [[ "$expire" -lt 31 ]]; then
            aliases=$(echo "$crt_data" |grep DNS:)
            aliases=$(echo "$aliases" |sed -e "s/DNS://g" -e "s/,//")
            aliases=$(echo "$aliases" |tr ' ' '\n' |sed "/^$/d")
            aliases=$(echo "$aliases" |grep -v "^$domain$")
            if [ ! -z "$aliases" ]; then
                aliases=$(echo "$aliases" |sed -e ':a;N;$!ba;s/\n/,/g')
                msg=$($BIN/v-add-letsencrypt-domain $user $domain $aliases)
                if [ $? -ne 0 ]; then
                    echo "$domain $msg"
                fi
            else
                msg==$($BIN/v-add-letsencrypt-domain $user $domain)
                if [ $? -ne 0 ]; then
                    echo "$domain $msg"
                fi
            fi
            if [ $lecounter -gt 0 ]; then
                sleep 10
            fi
            ((lecounter++))
        fi
    done
done

#----------------------------------------------------------#
#                       Vesta                              #
#----------------------------------------------------------#

# No Logging
#log_event "$OK" "$EVENT"

exit