Patrick
/
server_config
關註 1
收藏 0
複製 0
程式碼 問題管理 0 合併請求 0 版本發佈 0 Wiki Activity
service configuration files that needs to be saved just incase the server got lost someday by the cloud provider.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5 Commit
1 分支
42KB
目錄樹: 355e980949
分支列表 標籤列表
${ item.name }
Create branch ${ searchTerm }
from '355e980949'
${ noResults }
server_config/supercredit.com.au/etc/letsencrypt/renewal-hooks/deploy/supercredit.com.au.php

85 line
2.6KB
原始文件 Blame 文件歷史 

  1. #!/usr/bin/php

  2. <?php

  3. //

  4. //read environment variables

  5. 

  6. //the shell variable $RENEWED_LINEAGE will point to the config live subdirectory

  7. //(for example, "/etc/letsencrypt/live/example.com") containing the new certs and

  8. //keys; the shell variable $RENEWED_DOMAINS will contain a space-delimited list

  9. //of renewed cert domains (for example, "example.com www.example.com").

  10. 

  11. $domains = explode(" ", getenv('RENEWED_DOMAINS'));

  12. 

  13. //update each domain

  14. foreach ($domains as $d) {

  15. 	echo "update $d \n";

  16. 

  17. 	if ($d=="supercredit.com.au"){

  18. 		// install_to_cpanel();

  19. 	}

  20. }

  21. 

  22. //restart nginx webserver.

  23. exec('/usr/sbin/service nginx reload');

  24. 

  25. 

  26. function install_to_cpanel()

  27. {

  28. 	//https://documentation.cpanel.net/display/DD/Tutorial+-+Call+UAPI%27s+SSL%3A%3Ainstall_ssl+Function+in+Custom+Code

  29. 

  30. 	// Log everything during development.

  31. 	// If you run this on the CLI, set 'display_errors = On' in php.ini.

  32. 	error_reporting(E_ALL);

  33. 

  34. 	// Declare your username and password for authentication.

  35. 	$username = 'supercreditcom';

  36. 	$password = 'P#SdlnWQ$+mW';

  37. 

  38. 	// Define the API call.

  39. 	$cpanel_host = 'biz96.biukop.com.au';

  40. 	$request_uri = "https://$cpanel_host:2083/execute/SSL/install_ssl";

  41. 

  42. 	// Define the SSL certificate and key files.

  43. 	$cert_file = realpath("/etc/letsencrypt/live/supercredit.com.au/cert.pem");

  44. 	$key_file = realpath("/etc/letsencrypt/live/supercredit.com.au/privkey.pem");

  45. 	$chain_file = realpath("/etc/letsencrypt/live/supercredit.com.au/chain.pem");

  46. 

  47. 	// Set up the payload to send to the server.

  48. 	$payload = array(

  49.     	'domain'  => "supercredit.com.au",

  50.     	'cert'    => file_get_contents($cert_file),

  51.     	'key'     => file_get_contents($key_file),

  52.     	'cabundle'=> file_get_contents($chain_file),

  53. 	);

  54. 

  55. 	// Set up the cURL request object.

  56. 	$ch = curl_init( $request_uri );

  57. 	curl_setopt( $ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC );

  58. 	curl_setopt( $ch, CURLOPT_USERPWD, $username . ':' . $password );

  59. 	curl_setopt( $ch, CURLOPT_SSL_VERIFYHOST, false );

  60. 	curl_setopt( $ch, CURLOPT_SSL_VERIFYPEER, false );

  61. 

  62. 	// Set up a POST request with the payload.

  63. 	curl_setopt( $ch, CURLOPT_POST, true );

  64. 	curl_setopt( $ch, CURLOPT_POSTFIELDS, $payload );

  65. 	curl_setopt( $ch, CURLOPT_RETURNTRANSFER, true );

  66. 

  67. 	// Make the call, and then terminate the cURL caller object.

  68. 	$curl_response = curl_exec( $ch );

  69. 	curl_close( $ch );

  70. 

  71. 	// Decode and validate output.

  72. 	$response = json_decode( $curl_response );

  73. 	if( empty( $response ) ) {

  74.     	echo "The cURL call did not return valid JSON:\n";

  75.     	die( $response );

  76. 	} elseif ( !$response->status ) {

  77.     	echo "The cURL call returned valid JSON, but reported errors:\n";

  78.     	die( $response->errors[0] . "\n" );

  79. 	}

  80. 	// Print and exit.

  81. 	die( print_r( $response ) );

  82. }

  83. ?>