lingyuzeng/certbot-aliyun-docker
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

merge into: lingyuzeng:hangzhou
Branches Tags
lingyuzeng:main lingyuzeng:hangzhou
...
pull from: lingyuzeng:main
Branches Tags
lingyuzeng:main lingyuzeng:hangzhou

3 Commits
hangzhou ... main

Author SHA1 Message Date
mm644706215
4f7e9a23b1 update secret 2025-08-02 17:55:56 +08:00
mm644706215
f7e351e0ba 更新一次性用法, 2025-08-02 17:50:17 +08:00
mm644706215
eac6d1cd5b fix path 2025-08-02 17:12:43 +08:00
3 changed files with 12 additions and 20 deletions
Expand all files Collapse all files

24
derper/install.sh
View File

@@ -1,23 +1,15 @@
#!/bin/bash
cd /opt/caddy/certbot-aliyun-docker/derper
cd /opt/certbot-aliyun-docker/derper
rm -rf ./letsencrypt/accounts
docker run --rm \
--entrypoint /bin/bash \
-e REGION=cn-hangzhou \
-e ACCESS_KEY_ID=LTAI5tP1yWFMMJhF6nrGYEit \
-e ACCESS_KEY_SECRET=xBEMX76UwvO21DCES2605VM0kAU7TV \
-e DOMAIN=derper.jmsu.top \
-e DOMAIN=derphz.jmsu.top \
-e EMAIL=pylyzeng@gmail.com \
-e CRON_SCHEDULE="0 0 * * *" \
-v "$PWD/letsencrypt:/etc/letsencrypt" \
-v "$PWD/certs:/app/certs" \
-v "$PWD/logs:/var/log/certbot" \
-v "./letsencrypt:/etc/letsencrypt" \
-v "./certs:/app/certs" \
-v "./logs:/var/log/certbot" \
hotwa/certbot:latest \
certbot certonly \
-d "*.derper.jmsu.top" \
--manual \
--preferred-challenges dns \
--manual-auth-hook "alidns" \
--manual-cleanup-hook "alidns clean" \
--email pylyzeng@gmail.com \
--agree-tos \
--non-interactive \
-v
-c 'source /opt/venv/bin/activate && aliyun configure set --profile akProfile --mode AK --region "$REGION" --access-key-id "$ACCESS_KEY_ID" --access-key-secret "$ACCESS_KEY_SECRET" && certbot certonly -d "$DOMAIN" --manual --preferred-challenges dns --manual-auth-hook "/usr/local/bin/alidns" --manual-cleanup-hook "/usr/local/bin/alidns clean" --email "$EMAIL" --agree-tos --non-interactive'

2
derper/renew.sh
View File

@@ -3,7 +3,7 @@ cd /opt/caddy/certbot-aliyun-docker/derper
docker run --rm \
-e REGION=cn-hangzhou \
-e ACCESS_KEY_ID=LTAI5tP1yWFMMJhF6nrGYEit \
-e ACCESS_KEY_SECRET=LTAI5tP1yWFMMJhF6nrGYEit \
-e ACCESS_KEY_SECRET=xBEMX76UwvO21DCES2605VM0kAU7TV \
-e DOMAIN=derper.jmsu.top \
-e EMAIL=pylyzeng@gmail.com \
-v "$PWD/letsencrypt:/etc/letsencrypt" \

6
renew_derper.sh
View File

@@ -12,7 +12,7 @@ DOMAIN="$2" # 第二个参数:域名,比如 derper.jmsu.top
# 可选你可以将阿里云AK/SK/邮箱也作为参数或放到环境变量/配置文件
REGION="cn-hangzhou"
ACCESS_KEY_ID="LTAI5tP1yWFMMJhF6nrGYEit" # 推荐写到外部变量,或传参数
ACCESS_KEY_SECRET="LTAI5tP1yWFMMJhF6nrGYEit" # 推荐写到外部变量,或传参数
ACCESS_KEY_SECRET="xBEMX76UwvO21DCES2605VM0kAU7TV" # 推荐写到外部变量,或传参数
EMAIL="pylyzeng@gmail.com"
cd "$WORKDIR" || exit 1
@@ -45,10 +45,10 @@ echo ">>> derper up OK"
echo "crontab 添加任务选项(请根据实际需求选择,复制到 crontab 即可):"
echo
echo "【每周一凌晨 2 点执行】"
echo "0 2 * * 1 $WORKDIR/renew_derper.sh $WORKDIR $DOMAIN >> /var/log/renew_derper.log 2>&1"
echo "0 2 * * 1 $WORKDIR/../renew_derper.sh $WORKDIR $DOMAIN >> /var/log/renew_derper.log 2>&1"
echo
echo "【每月 1 号凌晨 2 点执行】"
echo "0 2 1 * * $WORKDIR/renew_derper.sh $WORKDIR $DOMAIN >> /var/log/renew_derper.log 2>&1"
echo "0 2 1 * * $WORKDIR/../renew_derper.sh $WORKDIR $DOMAIN >> /var/log/renew_derper.log 2>&1"
echo ">>> 当前容器日志"
docker compose logs