#!/bin/bash

# ignore these hosts
ignore_hosts=('localhost')

# where should the certificates be requested?
ca_host='user@ca.example.com'

# request new key/cert not before this many days
key_min_duration=15

# which user owns the certificates (not root)
certificate_user='http'

# directory of the webserver - must be reachable via https://$host/.csr/
webserver_dir='/srv/http/httpdocs/.csr'