Don't try auto-renew, rely on automations

DOCS.md

@@ -3,3 +3,7 @@
 ## How to use
 
 Before enabling this addon, you need to copy two device key files to `config/device-certs/`: a device certificate stored in `config/device-certs/device.pem.crt` and a device key stored in `config/device-certs/device.pem.key`. These files need to be retrieved from the AWS IoT service.
+
+## Automating this
+
+https://community.home-assistant.io/t/lets-encrypt-add-on-how-to-get-automatic-renewal/171236 has a thread on this. Use the cert expiry entity, and a sensor that triggers this when the certificate is close to expired

iot-certbot/rootfs/etc/services.d/lets-encrypt/finish

@@ -4,9 +4,5 @@
 # s6-overlay docs: https://github.com/just-containers/s6-overlay
 # ==============================================================================
 
-if [[ "$1" -ne 0 ]] && [[ "$1" -ne 256 ]]; then
-  bashio::log.warning "Halt add-on"
-  /run/s6/basedir/bin/halt
-fi
-
-bashio::log.info "Service restart after closing"
+bashio::log.warning "Halt add-on"
+/run/s6/basedir/bin/halt

iot-certbot/rootfs/etc/services.d/lets-encrypt/run

@@ -56,6 +56,3 @@ certbot certonly --non-interactive --keep-until-expiring --expand \
 CERT_DIR_LATEST="$(ls -td $CERT_DIR/live/*/ | head -1)"
 cp "${CERT_DIR_LATEST}privkey.pem" "/ssl/$KEYFILE"
 cp "${CERT_DIR_LATEST}fullchain.pem" "/ssl/$CERTFILE"
-
-# wait forever; we have periodic services running
-exec tail -f /dev/null