From f8e92b7271a7a8977e04d688b74a4b254be77ef3 Mon Sep 17 00:00:00 2001
From: Tinyblargon <76069640+Tinyblargon@users.noreply.github.com>
Date: Thu, 23 Nov 2023 20:34:45 +0000
Subject: [PATCH] feat: add support for environment variables

---
 defaults/main.yml                | 4 ++++
 tasks/create-cert-standalone.yml | 1 +
 tasks/create-cert-webroot.yml    | 1 +
 3 files changed, 6 insertions(+)

diff --git a/defaults/main.yml b/defaults/main.yml
index 1beca19..30f5ff9 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -15,6 +15,8 @@ certbot_create_if_missing: false
 certbot_create_method: standalone
 certbot_admin_email: email@example.com
 
+certbot_env_vars: {}
+
 # Default webroot, overwritten by individual per-cert webroot directories
 certbot_webroot: /var/www/letsencrypt
 
@@ -26,6 +28,8 @@ certbot_certs: []
 #     - example2.com
 # - domains:
 #     - example3.com
+#   env_vars:
+#     REQUESTS_CA_BUNDLE: "/etc/ssl/certs/my_root_ca.pem"
 
 certbot_create_command: >-
   {{ certbot_script }} certonly --{{ certbot_create_method  }}
diff --git a/tasks/create-cert-standalone.yml b/tasks/create-cert-standalone.yml
index 1d1f979..8362228 100644
--- a/tasks/create-cert-standalone.yml
+++ b/tasks/create-cert-standalone.yml
@@ -39,4 +39,5 @@
 
 - name: Generate new certificate if one doesn't exist.
   command: "{{ certbot_create_command }}"
+  environment: "{{ cert_item.env_vars | default(certbot_env_vars) }}"
   when: not letsencrypt_cert.stat.exists
diff --git a/tasks/create-cert-webroot.yml b/tasks/create-cert-webroot.yml
index 8399872..e23cdf7 100644
--- a/tasks/create-cert-webroot.yml
+++ b/tasks/create-cert-webroot.yml
@@ -11,4 +11,5 @@
 
 - name: Generate new certificate if one doesn't exist.
   command: "{{ certbot_create_command }}"
+  environment: "{{ cert_item.env_vars | default(certbot_env_vars) }}"
   when: not letsencrypt_cert.stat.exists