|
|
@ -56,6 +56,10 @@ |
|
|
|
- exit_hook |
|
|
|
- exit_hook |
|
|
|
tags: web,ssl |
|
|
|
tags: web,ssl |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
- name: Create per cert configuration dir |
|
|
|
|
|
|
|
file: path=/etc/dehydrated/certificates state=directory |
|
|
|
|
|
|
|
tags: web,ssl |
|
|
|
|
|
|
|
|
|
|
|
- name: Deploy default hooks |
|
|
|
- name: Deploy default hooks |
|
|
|
copy: content={{ letsencrypt_hooks[item] }} dest=/etc/dehydrated/hooks_{{ item }}.d/00-default mode=755 |
|
|
|
copy: content={{ letsencrypt_hooks[item] }} dest=/etc/dehydrated/hooks_{{ item }}.d/00-default mode=755 |
|
|
|
loop: |
|
|
|
loop: |
|
|
@ -97,7 +101,7 @@ |
|
|
|
tags: web,ssl |
|
|
|
tags: web,ssl |
|
|
|
|
|
|
|
|
|
|
|
- name: Deploy dehydrated configuration |
|
|
|
- name: Deploy dehydrated configuration |
|
|
|
template: src={{ item.src }} dest={{item.dest }} mode={{ item.mode | default('644') }} |
|
|
|
template: src={{ item.src }} dest={{ item.dest }} mode={{ item.mode | default('644') }} |
|
|
|
with_items: |
|
|
|
with_items: |
|
|
|
- src: config.j2 |
|
|
|
- src: config.j2 |
|
|
|
dest: /etc/dehydrated/config |
|
|
|
dest: /etc/dehydrated/config |
|
|
@ -110,6 +114,12 @@ |
|
|
|
notify: renew dehydrated |
|
|
|
notify: renew dehydrated |
|
|
|
tags: web,ssl |
|
|
|
tags: web,ssl |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
- name: Deploy per certificate config |
|
|
|
|
|
|
|
template: src=cert_config.j2 dest=/etc/dehydrated/certificates/{{ item.common_name }} mode=600 |
|
|
|
|
|
|
|
loop: "{{ letsencrypt_certs }}" |
|
|
|
|
|
|
|
notify: renew dehydrated |
|
|
|
|
|
|
|
tags: web,ssl |
|
|
|
|
|
|
|
|
|
|
|
- name: Create httpd conf dir |
|
|
|
- name: Create httpd conf dir |
|
|
|
file: path=/etc/httpd/ansible_conf.d state=directory |
|
|
|
file: path=/etc/httpd/ansible_conf.d state=directory |
|
|
|
when: ansible_os_family == 'RedHat' |
|
|
|
when: ansible_os_family == 'RedHat' |
|
|
|