If you have been following along you may have noticed that dehydrated has now gone mainstream with a version now in the EPEL repo.
Currently it is v0.6.5-1
It will make our lives much easier if we switch to using it because we then don't have to maintain our own version.
All pretty easy except two issues.
1. The EPEL version has a new cron.d entry.
I have added a template for this in the new test version of smeserver-letsencrypt 0.5-10 in smetest
Without adding a new key there is no easy way to switch between the old version and the new version. That in itself isn't a massive problem. I am just going to make it the default with 0.6.5-1 and 0.5-11
2. The EPEL version has switched the location of the hook script from /usr/bin to /etc/dehydrated and renamed it as well. Their version also has more options which could be used if required. I have already prepared templates for the new version.
The problem here is custom templates where you might deploy a certificate to a specific host.
I have a couple where I scp certs to another host and I think there may be others out there as well.
There is no particularly easy way to migrate these fragments (that I am currently aware of).
I'd like to switch to using their new hopok.sh format as it has more options if you require them.
What I am thinking of doing is:
Leave existing hook-script.sh templates in place
Add hookDirectory key
Default hookDirectory to /user/bin/hook-script.sh
It can be modified to /etc/dehydrated/hook.sh
Of course I'd prefer that would be reversed to make the new location default.
Let me know if you have any comments or suggestions as I would like to get us all to use 0.6.5.x as soon as possible