starred/Plesk-Certbot-Api-Hooks
1
0
Fork 0
mirror of https://github.com/KminekMatej/Plesk-Certbot-Api-Hooks.git synced 2026-04-25 11:26:03 +03:00
Code Issues Projects Packages Wiki Activity
No description
6 commits 1 branch 0 tags 50 KiB
Find a file
Exact
Matěj Kmínek 48bfac6dd7
 Update README.md
2021-02-18 21:00:44 +01:00
plesk-api-prehook.sh Create plesk-api-prehook.sh 2021-02-18 16:55:19 +01:00
README.md Update README.md 2021-02-18 21:00:44 +01:00

README.md

Plesk-Certbot-Api-Hooks

Scripts creates DNS record on Plesk server, using Plesk XML API

It's meant to be used in addition with certbot package for Let's encrypt generated certificates, passed to certbot through parameter --manual-auth-hook

This script:

  • Parses parameters from certbot ($CERTBOT_DOMAIN and $CERTBOT_VALIDATION) into DNS hostname, like \_acme-challenge.foo (for certificate request to \*.foo.boost.space) or \_acme-challenge (for certificate request to \*.example.com)
  • Sends request to PLESK server, detecting if this host is already in domains
  • Deletes that DNS record if it already exists on Plesk
  • Create new DNS TXT record for parsed host name with value taken from $CERTBOT_VALIDATION
  • Sleeps for 10 secs to give plesk time for propagation

Script is useful if you have DNS nameserver handled by Plesk webservice and domains are on different server. Or if you, for any reason, don't want to use native Plesk Let's encrypt renewal process.

Script example:

certbot-auto certonly --force-renewal --manual --preferred-challenges=dns --manual-auth-hook /path/to/plesk-api-prehook.sh --email me@example.com --agree-tos -d \*.example.com

Creates DNS record:

_acme-challenge.example.com. IN TXT "DKvGAeI8mqJojvbSxN0KCWFFyBgwPPNqrR8wXxtqS9A"