Automatically reload TLS certificates on a schedule #2337
Description
Basically I use ergo and leech of the LE certs obtained by caddy. Due to docker containers/isolation etc, there is no easy way for caddy to signal ergo to rehash.
So I was thinking, why couldn't ergo auto-reload cert files on a schedule (e.g. daily). I use LE "shortlived" certificates which expire after 6 days and 16 hours, and manually rehashing every 5 days sounds like a pain.
Shortlived certificates are replaced at half their lifetime, so the active certificate will rotate every 3-4 days.
Alternatively I could set up a CRON job once a day which sends the REHASH signal, but that'd reload more than just the TLS certs... + that'd be another process...