From 915750b99826558b8be05a2e0964e96b81aafac0 Mon Sep 17 00:00:00 2001
From: Patrick Spek
Date: Sat, 24 Sep 2022 09:04:27 +0200
Subject: Set permissions on LE files
---
playbooks.d/webserver-nginx/playbook.bash | 3 +++
1 file changed, 3 insertions(+)
(limited to 'playbooks.d/webserver-nginx')
diff --git a/playbooks.d/webserver-nginx/playbook.bash b/playbooks.d/webserver-nginx/playbook.bash
index ddc2ee6..95d0254 100644
--- a/playbooks.d/webserver-nginx/playbook.bash
+++ b/playbooks.d/webserver-nginx/playbook.bash
@@ -109,6 +109,9 @@ playbook_sync()
notice "webserver/sync" "Renewing Let's Encrypt certificates"
certbot renew --no-random-sleep-on-renew
+ notice "webserver/sync" "Set Let's Encrypt permissions to www user"
+ chown -R "$(config "nginx.user"):$(config "nginx.group")" "$(config "fs.etcdir")/letsencrypt"
+
[[ "$BASHTARD_COMMAND" == "add" ]] && return
svc reload nginx
--
cgit v1.1