Welcome to novaBBS (click a section below)
|mail  files  register  newsreader  login|
|auto reload nginx after letsencrypt cert update||Retro Guy|
Getting tired of my sites saying the cert is expired even after it's auto-renewed. Every 90 days, each site does this until either I reload nginx or it happens automatically for some reason.
Note: This is for letsencrypt certs:
renew-hook has been deprecated in recent versions of certbot. Plus, debian moved from using cronjobs for automatic renewals to systemd timer if they are available. On the other hand, now certbot supports having hooks in configuration files. So, instead of what is described above, i would suggest creating a file /etc/letsencrypt/renewal-hooks/deploy/01-reload-nginx with the following content:
don’t forget to make the file executable.
Let's see how it does on the next renewals.
Posted on Rocksolid Light