finallycoffee/base
5
0
Fork 1
Code Issues 2 Pull Requests 4 Packages Projects Releases Wiki Activity

lego hook execution with bash -c #13

New Issue
Open
opened 2025-09-24 19:54:24 +00:00 by jadyn · 1 comment
jadyn commented 2025-09-24 19:54:24 +00:00
Member
Copy Link

Maybe we should use bash -c here:

roles/lego/files/lego_run.sh Line 34 in 5e777934ed
$LEGO_POST_RENEWAL_HOOK
 

if [[ -n "${LEGO_POST_RENEWAL_HOOK:-}" ]]; then
  /usr/bin/env bash -c "$LEGO_POST_RENEWAL_HOOK"
fi
Maybe we should use `bash -c` here: https://git.finally.coffee/finallycoffee/base/src/commit/5e777934ed333bcc7099a7a4e5702d5db743e972/roles/lego/files/lego_run.sh#L34 ```bash if [[ -n "${LEGO_POST_RENEWAL_HOOK:-}" ]]; then /usr/bin/env bash -c "$LEGO_POST_RENEWAL_HOOK" fi ```
transcaffeine commented 2025-10-14 16:52:43 +00:00
Owner
Copy Link

That assumes that $LEGO_POST_RENEWAL_HOOK is executable with bash - right now, it can be any (shell) executable, as long as it is executable, it works.

One could make the argument, that the same arguments usually passed with f.ex. certbot etc should be passed as positional arguments.

That assumes that `$LEGO_POST_RENEWAL_HOOK` is executable with bash - right now, it can be any (shell) executable, as long as it is executable, it works. One could make the argument, that the same arguments usually passed with f.ex. certbot etc should be passed as positional arguments.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
evlli jadyn jdreichmann leona transcaffeine
No Assignees
2 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: finallycoffee/base#13
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?