Verified Commit 89200e83 authored by Frederik Enste's avatar Frederik Enste
Browse files

added letsencrypt scripts

parent 5d2132c3
#!/bin/sh
set -e
# This deploy hook will be executed after the certificates were updated by the teco dns server.
# Add any commands that should be executed in that case (like restarting webservers).
# Example: Restart nginx
#systemctl restart nginx.service
exit 0
#!/bin/sh
set -e
#TECO TODO add short discription and link to wiki side
echo $1 | base64 -d | tar --overwrite -xf - -C "/etc/teco/dnscert/"
exec /etc/teco/dnscert/deploy-hook.sh
......@@ -13,4 +13,7 @@ systemctl enable --now acpid.service
# time zone
ln --force --symbolic /usr/share/zoneinfo/Europe/Berlin /etc/localtime
# add public ssh key from the dns server
echo 'no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty,command="/usr/local/sbin/dnscert.sh $SSH_ORIGINAL_COMMAND" ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDANAEcsls/vb2cn/c5vy43ynkYRGvwrZvakHV83ks5jpVflrKUH6zo+o2x3dmAA9W7YanUOZpfGG2lJ6vN1ljt/SnTJTz7bA/NKTtnHGtpz8yXnVbnxSu0qsEJA2+dXja9Cg/hG9ag1dlQdvtp8CL3y5pqmBaHjgjvF6Ic8iXwYL2S29wKm7cljDoVhQaWYoooD2iA8CsfAET7OcGR7QtCGt3Nv7eRJBWGbm3VuzyYmQ7YoOnj6jIBUcsONjJTJwVzu0TRs+15bFZEBdxsfde9NtgI2mSBpxOGTEDI2FhbG1CY5rMycH5aQV7+4Rz0WaKwYjwMxRF9Ry9WgHTlq/Et root@dns01' >> /root/.ssh/authorized_keys
exit 0
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment