Extracted asterisk from main update certificate script

diff --git a/update_certificate b/update_certificate
index 00f47064ab4c14adff7029082a2c17f537b63b67..e8ece4d7ea5fc1b3e6b1b491b1b058c4cb56dc70 100755 (executable)
--- a/update_certificate
+++ b/update_certificate
@@ -41,13 +41,7 @@ host="asterisk.giorgioravera.it"
 user="root"
 ALIVE=$(ping -c 1 $host |grep ttl)
 if [ ! -z "$ALIVE" ]; then
-       rsync -rlptDv /etc/letsencrypt/archive $user@$host:/etc/letsencrypt/
-       rsync -rlptDv /etc/letsencrypt/live $user@$host:/etc/letsencrypt/
-       ssh $user@$host chown asterisk:asterisk /etc/letsencrypt -R
-       ssh $user@$host fwconsole certificate --updateall
-       ssh $user@$host fwconsole sysadmin updatecert
-       #ssh $user@$host fwconsole restart
-       #ssh $user@$host systemctl reload httpd.service
+       update_certificate_asterisk
 else
        echo "Host $host not alive, skipped"
 fi

diff --git a/update_certificate_asterisk b/update_certificate_asterisk
new file mode 100755 (executable)
index 0000000..f74cd66
--- /dev/null
+++ b/update_certificate_asterisk
@@ -0,0 +1,19 @@
+#!/bin/bash
+
+# Parameters
+host='asterisk.giorgioravera.it'
+username="root"
+cert_path="/etc/letsencrypt/live/server.giorgioravera.it"
+keyname="letsencrypt"
+certificate="cert.pem"
+privatekey="privkey.pem"
+
+# Replace old cert & key
+scp $cert_path/$certificate $username@$host:/etc/asterisk/keys/Asterisk.crt
+scp $cert_path/$privatekey $username@$host:/etc/asterisk/keys/Asterisk.key
+ssh $username@$host chown asterisk:asterisk /etc/asterisk/keys/Asterisk.crt
+ssh $username@$host chown asterisk:asterisk /etc/asterisk/keys/Asterisk.key
+ssh $username@$host fwconsole certificate --import
+ssh $username@$host fwconsole certificate --default=0
+ssh $username@$host fwconsole reload
+ssh $username@$host systemctl reload httpd.service