automatically reload nginx if the letsencrypt certificate is renewed.

Author: dameyerdave

service_config/nginx/Dockerfile

@@ -1,2 +1,20 @@
-FROM nginx:mainline-alpine
+FROM nginx:mainline
+
+# Copy over the scripts
+COPY reloader.sh /
+COPY entrypoint.sh /
+
+# Make the scripts executable
+RUN chmod +x /reloader.sh /entrypoint.sh
+
+# Copy over the nginx config
 COPY nginx.conf /etc/nginx/nginx.conf
+
+# Install the requirements
+RUN apt-get update && apt-get install -y inotify-tools
+
+# Clean up the apt cache
+RUN apt-get clean autoclean && apt-get autoremove -y && rm -rf /var/lib/{apt,dpkg,cache,log}/
+
+ENTRYPOINT [ "/entrypoint.sh" ]
+CMD ["nginx", "-g", "daemon off;"]

service_config/nginx/entrypoint.sh

@@ -0,0 +1,4 @@
+#!/usr/bin/env bash
+
+sh -c "/reloader.sh &"
+exec "$@"

service_config/nginx/reloader.sh

@@ -0,0 +1,17 @@
+#!/usr/bin/env bash
+
+# This directories must me there to watch the files inside
+mkdir -p /etc/letsencrypt/live
+
+while true
+do
+  inotifywait -r --exclude .swp -e create -e modify -e delete -e move /etc/letsencrypt/live
+  nginx -t
+  if [ $? -eq 0 ]; then
+    echo "Detected Nginx change"
+    echo "Executing: nginx -s reload"
+    nginx -s reload
+  else
+    echo "Errors detected in nginx config, not reloading."
+  fi
+done