Changeset 32384 for main/trunk

Timestamp:

2018-08-29T21:14:39+12:00 (6 years ago)

Author:

ak19

Message:

1. Renaming some targets for ease of remembering. 2. Putting the renew-https-cert target into build.xml but there may be more work to do with this, such as adding a post hook that installs the certificate. Unable to test yet.

File:

• main/trunk/greenstone3/build.xml (modified) (5 diffs)

main/trunk/greenstone3/build.xml

@@ -1609 +1609 @@
 
   <!-- ============ Targets concerned with https certification ================ -->
+  <!-- Renewing existing https certificate
+       https://certbot.eff.org/docs/using.html#renewing-certificates 
+       ./path/to/GS3/bin/linux/certbot-auto renew ==quiet ==no-self-upgrade
+  -->
+  <target name="renew-existing-https-cert">
+    <echo>
+      NOTE: To run this target,
+      * you need to have sudo permissions. Enter the sudo password if prompted.
+      * ensure nothing is running on port 80.
+
+      If you want your cronjob to renew a certificate, you can add pre and post hooks
+      refer to https://certbot.eff.org/docs/using.html#renewing-certificates 
+      For more information run:
+         ./path/to/GS3/bin/linux/certbot-auto --help renew
+    </echo>
+    <exec executable="./certbot-auto" dir="${basedir}/bin/${os.bin.dir}" failonerror="true">
+     <arg value="renew"/>
+     <arg value="--quiet"/>
+     <arg value="--no-self-upgrade"/>
+    </exec>
+  </target>
+
   <!-- Revoke the certificate and remove it, including folders.
        See https://certbot.eff.org/docs/using.html#revoking-certificates
@@ -1614 +1636 @@
        ==staging or ==test-cert flag, that flag must be passed to the revoke subcommand."
   -->
-  <target name="remove-cert-https">
+  <target name="remove-https-cert">
     <echo>
       NOTE: You need to have sudo permissions to execute this target.
@@ -1641 +1663 @@
   </target>
 
-  <target name="setup-cert-https-info">
+  <target name="setup-https-cert-info">
     <echo>
       *********************************************************************
@@ -1651 +1673 @@
 
       Note that:
-      * if you already have a certificate, then you probably don't want to be running this target but the 'ant renew-cert-https' target instead, to renew your existing certificate.
+      * if you already have a certificate, then you probably don't want to be running this target but the 'ant renew-existing-https-cert' target instead, to renew your existing certificate.
       * if you run this target when you already have a generated certificate, the existing certificate will remain unchanged and the script will terminate with a message alerting you to this fact.
     </echo>
@@ -1677 +1699 @@
   </target>
 
-  <target name="setup-cert-https" depends="setup-cert-https-info,https-conditions-set">
+  <target name="setup-https-cert" depends="setup-https-cert-info,https-conditions-set">
     <input addproperty="https.cert.email">Enter an email that Let's Encrypt, the certification authority, can send any important notifications to</input>
     <input addproperty="https.other.domains">Besides tomcat.server=${tomcat.server}, you may enter a comma separated list of additional domains to support if any</input>