From ca8ad58678dca691e993c16735f1decd9a006eaa Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alfonso=20G=C3=B3mez-Arzola?= <alfonso@chromatichq.com>
Date: Wed, 19 Sep 2018 19:44:22 -0400
Subject: [PATCH] Use shell script to stop/start services

---
 files/certbot-auto-renew-script.j2 | 11 +++++++++++
 tasks/renew-cron.yml               |  9 ++++++++-
 2 files changed, 19 insertions(+), 1 deletion(-)
 create mode 100644 files/certbot-auto-renew-script.j2

diff --git a/files/certbot-auto-renew-script.j2 b/files/certbot-auto-renew-script.j2
new file mode 100644
index 0000000..80af8f6
--- /dev/null
+++ b/files/certbot-auto-renew-script.j2
@@ -0,0 +1,11 @@
+#!/bin/bash
+
+{% for serv in certbot_standalone_stop_services %}
+service {{ serv }} stop
+{% endfor %}
+
+{{ certbot_script }} renew {{ certbot_auto_renew_options }}
+
+{% for serv in certbot_standalone_stop_services %}
+service {{ serv }} start
+{% endfor %}
diff --git a/tasks/renew-cron.yml b/tasks/renew-cron.yml
index 394a30e..d07fbbe 100644
--- a/tasks/renew-cron.yml
+++ b/tasks/renew-cron.yml
@@ -1,8 +1,15 @@
 ---
+- name: Create certbot renewal script.
+  template:
+    src: files/certbot-auto-renew-script.j2
+    dest: /opt/certbot-auto-renew-script.sh
+    owner: "{{ certbot_auto_renew_user }}"
+    mode: 0744
+
 - name: Add cron job for certbot renewal (if configured).
   cron:
     name: Certbot automatic renewal.
-    job: "{{ certbot_script }} renew {{ certbot_auto_renew_options }}"
+    job: "/opt/certbot-auto-renew-script.sh"
     minute: "{{ certbot_auto_renew_minute }}"
     hour: "{{ certbot_auto_renew_hour }}"
     user: "{{ certbot_auto_renew_user }}"