gregandev/ansible-role-certbot
gregandev/ansible-role-certbot
1
0
Fork 0
mirror of https://github.com/geerlingguy/ansible-role-certbot.git synced 2025-04-18 16:31:36 +02:00
Code Issues Projects Releases Wiki Activity

Compare commits

base: gregandev:98ea3238ed399a0b8c6a974e7259f01a79b5fcde
Branches Tags
gregandev:master
gregandev:134-snap-install-method
gregandev:12-standalone-cert-generation
gregandev:5.4.0
gregandev:5.3.1
gregandev:5.3.0
gregandev:5.2.1
gregandev:5.2.0
gregandev:5.1.1
gregandev:5.1.0
gregandev:5.0.2
gregandev:5.0.1
gregandev:5.0.0
gregandev:4.2.0
gregandev:4.1.0
gregandev:4.0.0
gregandev:3.1.0
gregandev:3.0.3
gregandev:3.0.2
gregandev:3.0.1
gregandev:3.0.0
gregandev:2.0.1
gregandev:2.0.0
gregandev:1.0.1
gregandev:1.0.0
gregandev:0.2.1
gregandev:0.2.0
gregandev:0.1.0
...
compare: gregandev:e5bfeaf936b554941650c6a3bea4b99f6d912010
Branches Tags
gregandev:master
gregandev:134-snap-install-method
gregandev:12-standalone-cert-generation
gregandev:5.4.0
gregandev:5.3.1
gregandev:5.3.0
gregandev:5.2.1
gregandev:5.2.0
gregandev:5.1.1
gregandev:5.1.0
gregandev:5.0.2
gregandev:5.0.1
gregandev:5.0.0
gregandev:4.2.0
gregandev:4.1.0
gregandev:4.0.0
gregandev:3.1.0
gregandev:3.0.3
gregandev:3.0.2
gregandev:3.0.1
gregandev:3.0.0
gregandev:2.0.1
gregandev:2.0.0
gregandev:1.0.1
gregandev:1.0.0
gregandev:0.2.1
gregandev:0.2.0
gregandev:0.1.0

3 Commits
98ea3238ed ... e5bfeaf936

Author SHA1 Message Date
Jeff Geerling
e5bfeaf936 Attempt to get molecule CI tests running again. 2025-01-28 22:23:55 -06:00
Jeff Geerling
9045ec5a59
Merge pull request #208 from theS1LV3R/master 
Allow for certificates to be expanded to include new domains
 2025-01-28 22:10:40 -06:00
theS1LV3R
63638f4471
Allow for certificates to be expanded to include new domains 2024-02-09 16:29:19 +01:00
4 changed files with 7 additions and 13 deletions
Show Stats Expand all files Collapse all files

2
defaults/main.yml
View File

@ -14,6 +14,7 @@ certbot_hsts: false
certbot_create_if_missing: false
certbot_create_method: standalone
certbot_admin_email: email@example.com
certbot_expand: false
# Default webroot, overwritten by individual per-cert webroot directories
certbot_webroot: /var/www/letsencrypt
@ -35,6 +36,7 @@ certbot_create_command: >-
{{ '--test-cert' if certbot_testmode else '' }}
--noninteractive --agree-tos
--email {{ cert_item.email | default(certbot_admin_email) }}
{{ '--expand' if certbot_expand else '' }}
{{ '--webroot-path ' if certbot_create_method == 'webroot' else '' }}
{{ cert_item.webroot | default(certbot_webroot) if certbot_create_method == 'webroot' else '' }}
{{ certbot_create_extra_args }}

2
molecule/default/converge.yml
View File

@ -1,7 +1,7 @@
---
- name: Converge
hosts: all
become: true
# become: true
vars:
certbot_auto_renew_user: root

8
tasks/create-cert-standalone.yml
View File

@ -1,9 +1,4 @@
---
- name: Check if certificate already exists.
stat:
path: /etc/letsencrypt/live/{{ cert_item.domains | first | replace('*.', '') }}/cert.pem
register: letsencrypt_cert
- name: Ensure pre and post hook folders exist.
file:
path: /etc/letsencrypt/renewal-hooks/{{ item }}
@ -39,4 +34,5 @@
- name: Generate new certificate if one doesn't exist.
command: "{{ certbot_create_command }}"
when: not letsencrypt_cert.stat.exists
register: certbot_create
changed_when: "'no action taken' not in certbot_create.stdout"

8
tasks/create-cert-webroot.yml
View File

@ -1,9 +1,4 @@
---
- name: Check if certificate already exists.
stat:
path: /etc/letsencrypt/live/{{ cert_item.domains | first }}/cert.pem
register: letsencrypt_cert
- name: Create webroot directory if it doesn't exist yet
file:
path: "{{ cert_item.webroot | default(certbot_webroot) }}"
@ -11,4 +6,5 @@
- name: Generate new certificate if one doesn't exist.
command: "{{ certbot_create_command }}"
when: not letsencrypt_cert.stat.exists
register: certbot_create
changed_when: "'no action taken' not in certbot_create.stdout"