ansible-roles/roles/mysql_server/templates/dehydrated_hook.j2

#!/bin/sh

{% if mysql_letsencrypt_cert is defined %}

if [ $1 == "{{ pg_letsencrypt_cert }}" ]; then
  cp /var/lib/dehydrated/certificates/certs/{{ mysql_letsencrypt_cert }}/fullchain.pem /etc/my.ssl/server.crt
  cp /var/lib/dehydrated/certificates/certs/{{ mysql_letsencrypt_cert }}/privkey.pem /etc/my.ssl/server.key
  chown root:mysql /etc/my.ssl/server.key
  chown root:root /etc/my.ssl/server.crt
  chmod 640 /etc/my.ssl/server.key
  chmod 644 /etc/my.ssl/server.crt
  mysql -e 'FLUSH SSL;' || systemctl restart mysql
fi

{% else %}

# No Let's Encrypt cert configured, nothing to do
exit 0

{% endif %}
Update to 2022-03-19 19:00 2022-03-19 19:00:07 +01:00			`#!/bin/sh`

			`{% if mysql_letsencrypt_cert is defined %}`

			`if [ $1 == "{{ pg_letsencrypt_cert }}" ]; then`
			`cp /var/lib/dehydrated/certificates/certs/{{ mysql_letsencrypt_cert }}/fullchain.pem /etc/my.ssl/server.crt`
			`cp /var/lib/dehydrated/certificates/certs/{{ mysql_letsencrypt_cert }}/privkey.pem /etc/my.ssl/server.key`
			`chown root:mysql /etc/my.ssl/server.key`
			`chown root:root /etc/my.ssl/server.crt`
			`chmod 640 /etc/my.ssl/server.key`
			`chmod 644 /etc/my.ssl/server.crt`
Update to 2022-04-27 10:00 2022-04-27 10:00:09 +02:00			`mysql -e 'FLUSH SSL;' \|\| systemctl restart mysql`
Update to 2022-03-19 19:00 2022-03-19 19:00:07 +01:00			`fi`

			`{% else %}`

			`# No Let's Encrypt cert configured, nothing to do`
			`exit 0`

			`{% endif %}`