A shell script to automate the renewal of Certbot SSL certificates and their deployment to Heroku SSL.
sudo ./renew.sh DOMAIN HEROKU_APP_NAME
DOMAIN- the main domain name of the website you wish to renew. Can be found under/etc/letsencrypt/liveHEROKU_APP_NAMEthe name of the Heroku app against which the SSL certificates will be updated
e.g. sudo ./renew.sh foobar.co.uk foo-bar-app
Due to the opinionated directory permissions required by Certbot, this script must be run as root.
The Heroku app against which I call this script has an ACME Challenge endpoint that can be toggled with an environment variable. This is commented out to demonstrate how this can be configured via the Heroku CLI.