Files @ af9bde0c6a76
Branch filter:

Location: freifunk/Ansible-Configuration/web/tasks/install_acme_sh.yml - annotation

af9bde0c6a76 1.9 KiB text/x-yaml Show Source Show as Raw Download as Raw
x
fix: finish hugo and api tocuhes
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
97740b3e6e8e
5c2696aa6249
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
eff5e9720cff
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
2dc24f376af8
97740b3e6e8e
97740b3e6e8e
5874f5c8524e
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
2dc24f376af8
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
97740b3e6e8e
eff5e9720cff

---
# This just installs acme.sh for freifunk
- name: Check if acme.sh config files exists
  ansible.builtin.stat:
    path: "/root/.acme.sh"
    get_checksum: false
  become: true
  register: acme_config
- name: Download acme.sh
  ansible.builtin.get_url:
    url: "https://raw.githubusercontent.com/acmesh-official/acme.sh/master/acme.sh"
    dest: "/opt/downloaded_acme.sh"
    force: true
    mode: '755'
    owner: root
    group: root
  become: true
  become_method: sudo
  register: download_acme
  when: acme_config.stat.exists == false
- name: Install socat (required for acme.sh)
  ansible.builtin.apt:
    name: socat
    state: present
  become: true
- name: Copy downloaded_acme.sh for installation (temporary file) # the script copies ./acme.sh
  ansible.builtin.copy:
    remote_src: true
    src: "/opt/downloaded_acme.sh"
    dest: "/opt/acme.sh"
    mode: '755'
    owner: root
    group: root
  become: true
  when: download_acme.changed and acme_config.stat.exists == false
- name: Install acme.sh
  ansible.builtin.command:
    cmd: "/bin/bash /opt/downloaded_acme.sh --install --nocron -m freifunk@c3l.lu"
    chdir: "/opt" # Required because of script copying ./acme.sh
  become: true
  become_method: sudo
  when: download_acme.changed and acme_config.stat.exists == false
- name: Delete temporary acme.sh file
  ansible.builtin.file:
    path: "/opt/acme.sh"
    state: absent
  become: true
  when: download_acme.changed and acme_config.stat.exists == false
- name: Update acme.sh if not newly installed
  ansible.builtin.command:
    cmd: "/bin/bash /root/.acme.sh/acme.sh --upgrade"
  become: true
  when: acme_config.stat.exists
- name: Add cronjob for acme.sh
  ansible.builtin.cron:
    name: "reissue certs if necessary"
    user: root
    job: "/root/.acme.sh/acme.sh --cron --home \"/root/.acme.sh/\" > /dev/null"
    state: "present"
    minute: "0"
    hour: "0"
    day: "*"
    month: "*"
    weekday: "*"
  become: true
Server instance: saturn-3018008 This site is powered by Kallithea, which is © 2010–2021 by various authors & licensed under GPLv3. – Support