services:
  #Let's Encrypt requires domain's public A/AAAA DNS records pointed at your machine.
  certbot:
    build:
      context: ./docker
      dockerfile: Dockerfile
    image: registry.bitdeals.org/certbot
    restart: unless-stopped
    environment:
      - CERTBOT_DOMAIN=
      - CERTBOT_EMAIL= # optional for notifications
    volumes:
      - certificates:/etc/certificates
      - letsencrypt:/etc/letsencrypt
    entrypoint: "/bin/sh -c 'trap exit TERM; while :; do /opt/scripts/1-renew-cert.sh ; sleep 12h & wait $${!}; done;'"