Changeset - 3b48e1424308
Parent rev.
Child rev.
[Not reviewed]
0 1 0
x - 17 months ago 2023-12-14 20:46:16
xbr@c3l.lu
fix: ansible errors in issue_cert
1 file changed with 5 insertions and 3 deletions:
web/tasks/issue_cert.yml
5
3
0 comments (0 inline, 0 general)
web/tasks/issue_cert.yml
Show inline comments
 
@@ -15,6 +15,7 @@
 
  register: acme_cert_dir
 
- name: Pre-copy cert files
 
  ansible.builtin.copy:
 
    remote_src: true
 
    src: "/etc/ssl/certs/ssl-cert-snakeoil.pem"
 
    dest: "/etc/ssl/certs/ssl-{{ item }}-{{ domain_name }}.pem"
 
    mode: '644'
 
@@ -25,22 +26,23 @@
 
    - cert
 
    - ca
 
    - fullchain
 
  when: not acme_cert_dir.exists
 
  when: not acme_cert_dir.stat.exists
 
- name: Pre-copy key file
 
  ansible.builtin.copy:
 
    remote_src: true
 
    src: "/etc/ssl/private/ssl-cert-snakeoil.key"
 
    dest: "/etc/ssl/private/ssl-cert-{{ domain_name }}.pem"
 
    mode: '640'
 
    owner: 'root'
 
    group: 'ssl-cert'
 
  become: true
 
  when: not acme_cert_dir.exists
 
  when: not acme_cert_dir.stat.exists
 
- name: Issue certificate
 
  ansible.builtin.command:
 
    cmd: "/root/.acme.sh/acme.sh --issue --keylength ec-384
 
      -w /var/www/acme_root/ {{ all_domain_names }}"
 
  become: true
 
  when: not acme_cert_dir.exists
 
  when: not acme_cert_dir.stat.exists
 
  register: cert_issued
 
  changed_when: cert_issued.rc == 0
 
- name: Deploy certs and keys
0 comments (0 inline, 0 general)
Server instance: saturn-2945763 This site is powered by Kallithea, which is © 2010–2021 by various authors & licensed under GPLv3. – Support