I mount webserver docroot and /etc/letsencrypt directories into the certbot cont... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		_ugfj on April 20, 2024 \| parent \| context \| favorite \| on: Dehydrated: Letsencrypt/acme client implemented as... I mount webserver docroot and /etc/letsencrypt directories into the certbot container, /docroot and /etc/letsencrypt mount points respectively, it is totally prepared for this.

9dev on April 20, 2024 [–]

How did you implement reloading the modified TLS certificates after renewal tho?

_ugfj on April 20, 2024 | [–]

it's a two line script running periodically. the first line is docker the second is nginx -s reload. As /etc/letsencrypt dir is mounted from nginx into certbot, certbot upgrades that, nginx reload picks them up. Easy as pie.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact