#!/bin/bash                                                                                                             

LETSENCRYPT="/etc/letsencrypt/live"
CERT_HOSTNAME="the_hostname"
test -z "$1" || CERT_HOSTNAME="$1"
CERTDIR="$LETSENCRYPT/$CERT_HOSTNAME"

echo "LetsEncrypt Certificate Loader"
echo
echo "Retrieving certificate for $CERT_HOSTNAME"
echo

echo "===[ INITIALIZATION ]==="

echo "Setting up certificate directory..."
test -d "certs" && rm -rf certs
mkdir "certs"
test -d "backup" || mkdir "backup"
echo

echo "===[ VALIDATION ]==="
sudo test -d $CERTDIR || echo "[Error] certificate for $CERT_HOSTNAME doesn't exist!"
sudo test -d $CERTDIR || exit 1
echo "Certificate Hostname: $CERT_HOSTNAME, OK!"
echo

echo "===[ PROCESS ]==="
echo "Copying files..."
sudo cp -f $CERTDIR/cert.pem ./certs/
sudo cp -f $CERTDIR/chain.pem ./certs/
sudo cp -f $CERTDIR/fullchain.pem ./certs/
sudo cp -f $CERTDIR/privkey.pem ./certs/

echo "Setting owner to $USER"
sudo chown -R $USER ./certs/

echo "Changing it to read-only"
chmod -R 0700 ./certs/

echo "Packing up!"
zip -r certs.zip certs/ > /dev/null

echo

echo "===[ BACKUP ]==="
NOW=$(date +"%Y%m%d%H%M")
BACKUP_DIR="backup/certs_${CERT_HOSTNAME}_$NOW"

echo "Backing up to ${BACKUP_DIR}"
mv certs $BACKUP_DIR

echo

echo "===[ DONE ]==="
echo "Done!"
echo