Use a dummy chain process for backward compatibility (#131)

Author: SteveLTN

fs_overlay/etc/cont-init.d/00-welcome

@@ -2,6 +2,6 @@
 
 echo '
 ========================================
-HTTPS-PORTAL v1.2.6
+HTTPS-PORTAL v1.2.7
 ========================================
 '

fs_overlay/opt/certs_manager/certs_manager.rb

@@ -12,7 +12,6 @@ def setup
 
     OpenSSL.ensure_dhparam
     OpenSSL.ensure_account_key
-    download_intermediate_cert
     Nginx.setup
     Nginx.start
 
@@ -25,8 +24,6 @@ def setup
   def renew
     puts "Renewing ..."
     with_lock do
-      download_intermediate_cert
-
       NAConfig.domains.each do |domain|
         if OpenSSL.need_to_sign_or_renew? domain
           ACME.sign(domain)

fs_overlay/opt/certs_manager/lib/commands.rb

@@ -1,14 +1,9 @@
 require 'open-uri'
 
 module Commands
-  def download_intermediate_cert
-    unless File.exist? intermediate_cert_path
-      File.open(intermediate_cert_path, 'wb') do |saved_file|
-        open('https://letsencrypt.org/certs/lets-encrypt-x3-cross-signed.pem', 'rb') do |read_file|
-          saved_file.write(read_file.read)
-        end
-      end
-    end
+  def chain_cert(domain)
+    # Keeping this step for backward compatibility
+    system "ln -s #{domain.signed_cert_path} #{domain.chained_cert_path}"
   end
 
   def mkdir(domain)
@@ -22,8 +17,4 @@ def add_dockerhost_to_hosts
       f.puts "#{docker_host_ip}\tdockerhost"
     end
   end
-
-  def intermediate_cert_path
-    '/var/lib/https-portal/intermediate.pem'
-  end
 end

fs_overlay/opt/certs_manager/lib/open_ssl.rb

@@ -50,6 +50,8 @@ def self.self_sign(domain)
     EOC
 
     system command
+
+    system "ln -s #{domain.signed_cert_path} #{domain.chained_cert_path}"
   end
 
   private