#!/bin/bash
set -euo pipefail

CHALLENGE_RECORD="$1"
CHALLENGE_VALUE="$2"

logger -t letsencrypt "deploying challenge for record ${CHALLENGE_RECORD} with value ${CHALLENGE_VALUE}"

for i in $LETSENCRYPT_CHALLENGE_SERVERS; do
	logger -t letsencrypt "deploying to ${i}"
	{ ssh -i /etc/letsencrypt/renewkey -o "StrictHostKeyChecking no" letsencrypt@$i "$(cat "$LETSENCRYPT_TOKEN")" "${CHALLENGE_RECORD}" "${CHALLENGE_VALUE}" | logger -t letsencrypt -e; } ||
		{ logger -t letsencrypt "deploying failed with exit code $?"; exit 1; }
done