From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from eggs.gnu.org ([2001:4830:134:3::10]:39131) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1d4Odi-0005t5-2F for guix-patches@gnu.org; Sat, 29 Apr 2017 05:26:07 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1d4Ode-0001NJ-TD for guix-patches@gnu.org; Sat, 29 Apr 2017 05:26:06 -0400 Received: from debbugs.gnu.org ([208.118.235.43]:47316) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1d4Ode-0001NE-Q4 for guix-patches@gnu.org; Sat, 29 Apr 2017 05:26:02 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1d4Ode-0001Cl-FN for guix-patches@gnu.org; Sat, 29 Apr 2017 05:26:02 -0400 Subject: bug#26685: certbot service Resent-Message-ID: References: <87mvb0ubog.fsf@lassieur.org> From: =?UTF-8?Q?Cl=C3=A9ment?= Lassieur In-reply-to: Date: Sat, 29 Apr 2017 11:25:09 +0200 Message-ID: <871ssbmuq2.fsf@lassieur.org> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-patches-bounces+kyle=kyleam.com@gnu.org Sender: "Guix-patches" To: Andy Wingo Cc: 26685@debbugs.gnu.org Andy Wingo writes: > On Fri 28 Apr 2017 11:24, Clément Lassieur writes: >> Also I think some services have to be reloaded/restarted after their >> certificates are upgraded. That could be done via a mcron post-hook, I meant certbot --post-hook, not mcron. >> but I'm not sure how to pass the list of services that have to be >> restarted. WDYT? > Good question. I don't even know how to know when running certbot > results in a rotation and when it leaves things as-is. It's a great > question though! Actually I was wrong about certbot --post-hook: there is a certbot --renew-hook. This one gets called after every successful renewal. Thus in this hook we should restart/reload services.