Tiny wrapper around Lego to handle automatic cert renewal. https://git.fennell.dev/acme/atom?h=master 2025-12-28T17:42:25Z 2025-12-28T17:42:25Z Matthew Fennell matthew@fennell.dev 2025-12-28T17:42:25Z urn:sha1:07288f4b9a12bd8e26d420a46e03d56f7cf3d77f The web services on fennell-hosted run behind a reverse proxy which I do not control, and only forwards HTTP/HTTPS traffic. No DNS entries point to the underlying server. Therefore, the standard approach of using any DNS name that points to that server does not work here. I already have an entry in my ssh config for the underlying server under an alias. So, if I do ssh ${alias}, then it picks up the IP address from that config file. I want to use the same approach here, without duplicating the IP address. This means I must use the config file. This should allow me to use more flexible naming for other servers in the config file too, matching how I ssh to those servers normally. 2025-12-28T17:35:36Z Matthew Fennell matthew@fennell.dev 2025-12-28T17:31:28Z urn:sha1:fd4acc93b1eba466183907e347a6077a2f1db18b I run a prosody transport server, to interact with legacy networks. Since invites are disabled on this server, nginx doesn't run and so there's no need to restart it in this case. 2025-12-28T17:35:19Z Matthew Fennell matthew@fennell.dev 2025-12-28T17:27:58Z urn:sha1:d491dd33df9da172b03f576a46507f273fe48ff0 I no longer host forgejo, so there is no need for a dedicated command to update the certs. 2025-12-28T17:26:10Z Matthew Fennell matthew@fennell.dev 2025-12-28T17:26:10Z urn:sha1:f12e683d32c61d29aa0a5bbf1adfd3a339691e76 This is used for some of the services on fennell.dev, like munin, cgit and snac. 2024-05-29T17:16:11Z Matthew Fennell matthew@fennell.dev 2024-05-29T17:16:11Z urn:sha1:a960b23caebd5362b5f292f73c6e41ebee2ad98c This project's initial purpose was to automatically renew certiricates across multiple prosody servers. However, over time, it has been used with more services, each with their own ad-hoc and custom installation scripts. This commit replaces the install-for-prosody script with a more general script that can handle multiple different kinds of services in the future.