From 084d1623610edd56929c1c22428721df8e2b1572 Mon Sep 17 00:00:00 2001
From: Kishi85 <git@eightyfive.net>
Date: Mon, 25 Mar 2019 10:06:40 +0100
Subject: [PATCH] acertmgr: Run actions in a shell environment to allow shell
 syntax

---
 acertmgr/__init__.py | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

diff --git a/acertmgr/__init__.py b/acertmgr/__init__.py
index b5188f6..6ddfd23 100755
--- a/acertmgr/__init__.py
+++ b/acertmgr/__init__.py
@@ -151,15 +151,21 @@ def main():
     # check certificate validity and obtain/renew certificates if needed
     for config in configs:
         cert_file = config['cert_file']
+
         if not os.path.isfile(cert_file) or not tools.is_cert_valid(cert_file, config['ttl_days']):
             cert_get(config)
+
         for cfg in config['actions']:
             if not tools.target_is_current(cfg['path'], cert_file):
-                print("Updating '{}' due to newer certificate".format(cfg['path']))
+                print("Updating '{}' due to newer version".format(cfg['path']))
                 actions.add(cert_put(cfg))
 
     # run post-update actions
     for action in actions:
         if action is not None:
-            print("Running '{}' to trigger update for changes".format(action))
-            subprocess.call(action.split())
+            try:
+                # Run actions in a shell environment (to allow shell syntax) as stated in the configuration
+                output = subprocess.check_output(action, shell=True, stderr=subprocess.STDOUT)
+                print("Executed '{}' successfully: {}".format(action, output))
+            except subprocess.CalledProcessError as e:
+                print("Execution of '{}' failed with error '{}': {}".format(e.cmd, e.returncode, e.output))