feat(Makefile, compose.yaml, entrypoint.sh): enhance SSL setup process with improved certbot management

kzndotsh · kzndotsh · commit fa169975d874 · 2025-09-09T15:04:25.000-04:00
Improve the SSL setup process by enhancing the certbot service
management. The Makefile now includes steps to start the certbot
service, wait for it to be ready, and issue certificates. This
ensures a more reliable and automated certificate issuance process.

In `compose.yaml`, an entrypoint is added to keep the certbot
container running, which is necessary for the service to be
available for certificate issuance.

The `entrypoint.sh` script is updated to use `sh` instead of `bash`
for better compatibility across different environments. These
changes aim to streamline the SSL setup and renewal process,
reducing manual intervention and potential errors.
diff --git a/Makefile b/Makefile
@@ -503,7 +503,13 @@ setup-ssl: ## Setup SSL certificates with Let's Encrypt (ONE-TIME MANUAL SETUP)
 	@echo -e "$(BLUE)[INFO]$(NC) and fill in your Cloudflare credentials."
 	@echo -e "$(BLUE)[INFO]$(NC) After this, certificates renew AUTOMATICALLY every 30 days"
 	@echo
-	$(DOCKER_COMPOSE) --profile cert-issue up unrealircd-certbot
+	@echo -e "$(BLUE)[INFO]$(NC) Starting certbot service to issue certificates..."
+	$(DOCKER_COMPOSE) up -d certbot
+	@echo -e "$(BLUE)[INFO]$(NC) Waiting for certbot service to be ready..."
+	@timeout 60 bash -c 'until $(DOCKER_COMPOSE) exec certbot echo "Service ready" >/dev/null 2>&1; do sleep 2; done' || (echo -e "$(RED)[ERROR]$(NC) Certbot service failed to start properly" && exit 1)
+	@echo -e "$(BLUE)[INFO]$(NC) Issuing certificates..."
+	$(DOCKER_COMPOSE) exec certbot /usr/local/bin/certbot-scripts/entrypoint.sh issue
+	@echo -e "$(GREEN)[SUCCESS]$(NC) SSL certificate setup completed!"
 
 ssl-renew: ## Renew SSL certificates
 	@echo -e "$(PURPLE)=== Renewing SSL Certificates ===$(NC)"
diff --git a/compose.yaml b/compose.yaml
@@ -88,6 +88,9 @@ services:
     hostname: certbot-manager
     restart: unless-stopped
 
+    # Keep container running
+    entrypoint: ["sleep", "infinity"]
+
     # Environment from main project
     env_file:
       - path: .env.production
diff --git a/scripts/certbot/entrypoint.sh b/scripts/certbot/entrypoint.sh
@@ -1,4 +1,4 @@
-#!/bin/bash
+#!/bin/sh
 
 # ============================================================================
 # CERTBOT ENTRYPOINT SCRIPT

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-#!/bin/bash`
	`1`	`+#!/bin/sh`
`2`	`2`
`3`	`3`	`# ============================================================================`
`4`	`4`	`# CERTBOT ENTRYPOINT SCRIPT`