{{ data.directory_nginx.replace(endingSlashRegex, '') }} directoryecho 'BASE64' | base64 --decode > {{ data.directory_nginx }}nginxconfig.io-{{ getDomains().join(',') }}.zip)
cd {{ data.directory_nginx.replace(endingSlashRegex, '') }}
tar -czvf nginx_$(date +'%F_%H-%M-%S').tar.gz nginx.conf sites-available/ sites-enabled/ nginxconfig.io/
unzip -o nginxconfig.io-{{ getDomains().join(',') }}.zipsudo apt-get install unzip)
openssl dhparam -out {{ data.directory_nginx }}dhparam.pem {{ sslProfiles[ data.ssl_profile ].dh_param_size }}
mkdir -p {{ data.directory_letsencrypt.replace(endingSlashRegex, '') }}chown {{ data.user }} {{ data.directory_letsencrypt.replace(endingSlashRegex, '') }}sed -i -r 's/(listen .*443)/\1;#/g; s/(ssl_(certificate|certificate_key|trusted_certificate) )/#;#\1/g' {{ data.directory_nginx }}nginx.conf {{ data.directory_nginx }}sites-{{ isSymlink() ? 'available' : 'enabled' }}/{{ _domain }}.conf
sudo nginx -t && sudo systemctl reload nginx
certbot certonly --webroot -d {{ _domain.indexOf('-') !== -1 ? '"' + _domain + '"' : _domain }} -d {{ _domain.indexOf('-') !== -1 ? '"' : '' }}www.{{ _domain }}{{ _domain.indexOf('-') !== -1 ? '"' : '' }} -d {{ _domain.indexOf('-') !== -1 ? '"' : '' }}cdn.{{ _domain }}{{ _domain.indexOf('-') !== -1 ? '"' : '' }} --email {{ data.sites[_site].email ? data.sites[_site].email : 'info@' + _domain }} -w {{ data.directory_letsencrypt.replace(endingSlashRegex, '') }} -n --agree-tos --force-renewalsudo nginx -t && sudo systemctl reload nginx
echo -e '#!/bin/bash\nnginx -t && systemctl reload nginx' | sudo tee /etc/letsencrypt/renewal-hooks/post/nginx-reload.shsudo chmod a+x /etc/letsencrypt/renewal-hooks/post/nginx-reload.sh
sudo nginx -t && sudo systemctl reload nginx