Crash_Override/routeros-scripts
1
0
Fork 0
mirror of https://github.com/eworm-de/routeros-scripts synced 2024-05-14 08:04:19 +00:00
Code Issues Projects Releases Packages Wiki Activity

check-certificates: make the certificate renewal time configurable

Browse source
This commit is contained in:
Christian Hesse 2020-12-18 16:02:31 +01:00
parent be75772256
commit 010e2d6b05
5 changed files with 7 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
check-certificates
View file

@ -7,6 +7,7 @@
# https://git.eworm.de/cgit/routeros-scripts/about/doc/check-certificates.md # https://git.eworm.de/cgit/routeros-scripts/about/doc/check-certificates.md
:global CertRenewPass; :global CertRenewPass;
:global CertRenewTime;
:global CertRenewUrl; :global CertRenewUrl;
:global Identity; :global Identity;
@ -28,7 +29,7 @@
$WaitFullyConnected; $WaitFullyConnected;
:foreach Cert in=[ / certificate find where !revoked !ca !scep-url expires-after<3w ] do={ :foreach Cert in=[ / certificate find where !revoked !ca !scep-url expires-after<$CertRenewTime ] do={
:local CertVal [ / certificate get $Cert ]; :local CertVal [ / certificate get $Cert ];
:do { :do {

3
global-config
View file

@ -8,7 +8,7 @@
# Make sure all configuration properties are up to date and this # Make sure all configuration properties are up to date and this
# value is in sync with value in script 'global-functions'! # value is in sync with value in script 'global-functions'!
:global GlobalConfigVersion 39; :global GlobalConfigVersion 40;
# This is used for DNS and backup file. # This is used for DNS and backup file.
:global Domain "example.com"; :global Domain "example.com";
@ -142,6 +142,7 @@
# Use this for certificate auto-renew # Use this for certificate auto-renew
:global CertRenewUrl ""; :global CertRenewUrl "";
#:global CertRenewUrl "https://example.com/certificates/"; #:global CertRenewUrl "https://example.com/certificates/";
:global CertRenewTime 3w;
:global CertRenewPass { :global CertRenewPass {
"v3ry-s3cr3t"; "v3ry-s3cr3t";
"4n0th3r-s3cr3t"; "4n0th3r-s3cr3t";

2
global-config-overlay
View file

@ -9,7 +9,7 @@
# Make sure all configuration properties are up to date and this # Make sure all configuration properties are up to date and this
# value is in sync with value in script 'global-functions'! # value is in sync with value in script 'global-functions'!
# Comment or remove to disable change notifications. # Comment or remove to disable change notifications.
:global GlobalConfigVersion 39; :global GlobalConfigVersion 40;
# Copy configuration from global-config here and modify it. # Copy configuration from global-config here and modify it.

1
global-config.changes
View file

@ -48,4 +48,5 @@ $CertificateAvailable "R3";
37="Implemented simple dependency model in 'netwatch-notify'."; 37="Implemented simple dependency model in 'netwatch-notify'.";
38="Imported new Let's Encrypt intermediate certificate 'R3'."; 38="Imported new Let's Encrypt intermediate certificate 'R3'.";
39="Added support for interface specific address list entries in 'ipv6-update'."; 39="Added support for interface specific address list entries in 'ipv6-update'.";
40="Made the certificate renewal time configurable.";
}; };

2
global-functions
View file

@ -8,7 +8,7 @@
# https://git.eworm.de/cgit/routeros-scripts/about/ # https://git.eworm.de/cgit/routeros-scripts/about/
# expected configuration version # expected configuration version
:global ExpectedConfigVersion 39; :global ExpectedConfigVersion 40;
# global variables not to be changed by user # global variables not to be changed by user
:global GlobalFunctionsReady false; :global GlobalFunctionsReady false;