mirror of
https://github.com/geerlingguy/ansible-role-certbot.git
synced 2025-10-06 10:11:18 +02:00
Compare commits
5 Commits
dd9c3bcf25
...
d39a5a8228
| Author | SHA1 | Date | |
|---|---|---|---|
|
d39a5a8228 | ||
|
d35de757e0 | ||
|
ef85f3e63d | ||
|
9dcabdc972 | ||
|
|
b9415db0f0 |
@ -9,6 +9,12 @@ certbot_auto_renew_options: "--quiet"
|
|||||||
certbot_testmode: false
|
certbot_testmode: false
|
||||||
certbot_hsts: false
|
certbot_hsts: false
|
||||||
|
|
||||||
|
certbot_renewal_hook_post: ""
|
||||||
|
certbot_renewal_hook_pre: ""
|
||||||
|
certbot_renewal_hook_deploy: ""
|
||||||
|
certbot_renewal_hook_post_filename: "post.sh"
|
||||||
|
certbot_renewal_hook_pre_filename: "pre.sh"
|
||||||
|
certbot_renewal_hook_deploy_filename: "deploy.sh"
|
||||||
|
|
||||||
# Parameters used when creating new Certbot certs.
|
# Parameters used when creating new Certbot certs.
|
||||||
certbot_create_if_missing: false
|
certbot_create_if_missing: false
|
||||||
|
|||||||
@ -28,7 +28,7 @@
|
|||||||
mode: 0750
|
mode: 0750
|
||||||
when:
|
when:
|
||||||
- certbot_create_standalone_stop_services is defined
|
- certbot_create_standalone_stop_services is defined
|
||||||
- certbot_create_standalone_stop_services
|
- certbot_create_standalone_stop_services is truthy
|
||||||
|
|
||||||
- name: Create post hook to start services.
|
- name: Create post hook to start services.
|
||||||
template:
|
template:
|
||||||
@ -39,7 +39,7 @@
|
|||||||
mode: 0750
|
mode: 0750
|
||||||
when:
|
when:
|
||||||
- certbot_create_standalone_stop_services is defined
|
- certbot_create_standalone_stop_services is defined
|
||||||
- certbot_create_standalone_stop_services
|
- certbot_create_standalone_stop_services is truthy
|
||||||
|
|
||||||
- name: Check if domains have changed
|
- name: Check if domains have changed
|
||||||
block:
|
block:
|
||||||
|
|||||||
@ -29,5 +29,7 @@
|
|||||||
loop_control:
|
loop_control:
|
||||||
loop_var: cert_item
|
loop_var: cert_item
|
||||||
|
|
||||||
|
- import_tasks: setup-hooks.yml
|
||||||
|
|
||||||
- import_tasks: renew-cron.yml
|
- import_tasks: renew-cron.yml
|
||||||
when: certbot_auto_renew
|
when: certbot_auto_renew
|
||||||
|
|||||||
30
tasks/setup-hooks.yml
Normal file
30
tasks/setup-hooks.yml
Normal file
@ -0,0 +1,30 @@
|
|||||||
|
---
|
||||||
|
- name: Ensure renewal hook directories exist
|
||||||
|
file:
|
||||||
|
path: "/etc/letsencrypt/renewal-hooks/{{ item }}"
|
||||||
|
state: directory
|
||||||
|
with_items:
|
||||||
|
- post
|
||||||
|
- pre
|
||||||
|
- deploy
|
||||||
|
|
||||||
|
- name: Create post-renewal hook
|
||||||
|
copy:
|
||||||
|
content: "{{ certbot_renewal_hook_post }}"
|
||||||
|
dest: "/etc/letsencrypt/renewal-hooks/post/{{ certbot_renewal_hook_post_filename }}"
|
||||||
|
mode: "0755"
|
||||||
|
when: certbot_renewal_hook_post != ""
|
||||||
|
|
||||||
|
- name: Create pre-renewal hook
|
||||||
|
copy:
|
||||||
|
content: "{{ certbot_renewal_hook_pre }}"
|
||||||
|
dest: "/etc/letsencrypt/renewal-hooks/pre/{{ certbot_renewal_hook_pre_filename }}"
|
||||||
|
mode: "0755"
|
||||||
|
when: certbot_renewal_hook_pre != ""
|
||||||
|
|
||||||
|
- name: Create deploy-renewal hook
|
||||||
|
copy:
|
||||||
|
content: "{{ certbot_renewal_hook_deploy }}"
|
||||||
|
dest: "/etc/letsencrypt/renewal-hooks/deploy/{{ certbot_renewal_hook_deploy_filename }}"
|
||||||
|
mode: "0755"
|
||||||
|
when: certbot_renewal_hook_deploy != ""
|
||||||
Loading…
x
Reference in New Issue
Block a user
