I feel like certbot could be seamlessly refractored such that deployment-related updates to renewal configuration files are saved during deployment-related tasks. In essence, as I've been harping-on for a long time now, certbot could be refactored to have a definitive division between certonly acquisition and installation to avoid these counterintuitive behaviors.
1 Like