I mount webserver docroot and /etc/letsencrypt directories into the certbot cont... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		_ugfj on April 20, 2024 \| parent \| context \| favorite \| on: Dehydrated: Letsencrypt/acme client implemented as... I mount webserver docroot and /etc/letsencrypt directories into the certbot container, /docroot and /etc/letsencrypt mount points respectively, it is totally prepared for this.

9dev on April 20, 2024 [–]

How did you implement reloading the modified TLS certificates after renewal tho?

_ugfj on April 20, 2024 | [–]

it's a two line script running periodically. the first line is docker the second is nginx -s reload. As /etc/letsencrypt dir is mounted from nginx into certbot, certbot upgrades that, nginx reload picks them up. Easy as pie.

Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact