First of all thanks for your awesome services.
I’m automating certificate renewal process. In this process, we’re uploading our LE certificates to aws load balancer. So whenever a certificate get renewed, it should be updated on aws as well. Awscli command used to reimport certificate to aws certificate manager include certificate arn(just like ID) e.g.
sudo aws acm import-certificate --certificate file://$RENEWED_LINEAGE/cert.pem --private-key file://$RENEWED_LINEAGE/privkey.pem --certificate-chain file://$RENEWED_LINEAGE/chain.pem --certificate-arn arn:aws:acm:region:123456789012:certificate/12345678-1234-1234-1234-12345678901
I’m thinking to place it inside renewal_hooks/deploy directory as deploy hook script, so that whenever a certificate gets renewed it will deploy on aws, but got stuck on how to handle this certificate arn which is different for every certificate. Is there any way we can achieve this as there are multiple certificates which cannot use same script ?
Thanks in advance.