gregandev/ansible-role-certbot
gregandev/ansible-role-certbot
1
0
Fork 0
mirror of https://github.com/geerlingguy/ansible-role-certbot.git synced 2025-04-20 17:21:42 +02:00
Code Issues Projects Releases Wiki Activity
ansible-role-certbot/tasks/create-cert-standalone.yml
Steven Dickenson 8e23118779 Address linter feedback
2021-02-15 14:01:34 -05:00

34 lines
1.1 KiB
YAML
Raw Blame History

---
- name: Check if certificate already exists.
stat:
path: /etc/letsencrypt/live/{{ cert_item.domains | first | replace('*.', '') }}/cert.pem
register: letsencrypt_cert
- name: Stop services to allow certbot to generate a cert.
service:
name: "{{ item }}"
state: stopped
when: not letsencrypt_cert.stat.exists
with_items: "{{ certbot_create_standalone_stop_services }}"
- name: Generate new certificate if one doesn't exist.
command: "{{ certbot_create_command }}"
when: not letsencrypt_cert.stat.exists
- name: Start services after cert has been generated.
service:
name: "{{ item }}"
state: started
when: not letsencrypt_cert.stat.exists
with_items: "{{ certbot_create_standalone_stop_services }}"
- name: Apply renewal configuration updates
ini_file:
path: "/etc/letsencrypt/renewal/{{ cert_item.domains | first | replace('*.', '') }}.conf"
section: renewalparams
option: "{{ item.key }}"
value: "{{ item.value }}"
create: "no"
loop: "{{ cert_item.renewal_config | dict2items }}"
when: cert_item.renewal_config is defined
Reference in New Issue View Git Blame Copy Permalink