fix: fallback to old fullchain pem file for checking if a certificate…

… is enabled Refs #224
dokku · Apr 2, 2021 · 4479342 · 4479342
1 parent 27cd830
commit 4479342
Showing 1 changed file with 8 additions and 1 deletion.
diff --git a/functions b/functions
@@ -98,7 +98,14 @@ letsencrypt_is_active() {
 
   # check if certificate is identical to the current let's encrypt certificate by comparing SHA1 hashes
   local cert_sha1=$( (cat "$DOKKU_ROOT/$app/tls/server.crt" 2>/dev/null) | sha1sum || echo "not_found")
-  local le_sha1=$( (cat "$DOKKU_ROOT/$app/letsencrypt/certs/current/certificates/$domain.pem" 2>/dev/null) | sha1sum || echo "not_found")
+
+  local le_sha1="not_found"
+  if [[ -f "$DOKKU_ROOT/$app/letsencrypt/certs/current/certificates/$domain.pem" ]]; then
+    le_sha1=$( (cat "$DOKKU_ROOT/$app/letsencrypt/certs/current/certificates/$domain.pem" 2>/dev/null) | sha1sum || echo "not_found")
+  elif [[ -f "$DOKKU_ROOT/$app/letsencrypt/certs/current/fullchain.pem" ]]; then
+    le_sha1=$( (cat "$DOKKU_ROOT/$app/letsencrypt/certs/current/fullchain.pem" 2>/dev/null) | sha1sum || echo "not_found")
+  fi
+
   [[ "$cert_sha1" == "$le_sha1" ]] || return 2
 
   echo "$app"