I'm running certbot 1.19.0 snap on ubunto focal. I issued my cert with the dns-route53 plugin and apache install. It set up a systemd timer to do auto renewals. My cert isn't old enough for a renewal yet, but I'm wondering how I can set an environment variable for my AWS_PROFILE in the systemd unit. There doesn't seem to be an option to certbot to add something in and when I manually edited the unit, certbot overwrote it the next time it ran.
How do people handle this besides making the AWS profile that has route53 permissions the default profile for the root user?
I have the creds for my IAM user that has route53 perms set in an awscli profile - not the default profile. So, certbot needs an AWS_PROFILE environment variable to be set to the correct profile name.