mirror of
https://gitlab.archlinux.org/archlinux/infrastructure.git
synced 2024-05-18 20:46:26 +02:00
26f289b72b
ansible-lint 6.5.0 complains about:
name: All names should start with an
uppercase letter. (name[casing])
34 lines
1.1 KiB
YAML
34 lines
1.1 KiB
YAML
- name: Install certbot
|
|
pacman: name=certbot{{ ",certbot-dns-rfc2136" if certbot_dns_support }} state=present
|
|
|
|
- name: Install rfc2136.ini
|
|
template: src=rfc2136.ini.j2 dest=/etc/letsencrypt/rfc2136.ini owner=root group=root mode=0600
|
|
when: certbot_dns_support
|
|
|
|
- name: Install letsencrypt hook
|
|
copy: src=hook.sh dest=/etc/letsencrypt/hook.sh owner=root group=root mode=0755
|
|
|
|
- name: Create letsencrypt hook dir
|
|
file: state=directory path=/etc/letsencrypt/hook.d owner=root group=root mode=0755
|
|
|
|
- name: Install letsencrypt renewal service
|
|
copy: src={{ item }} dest=/etc/systemd/system/{{ item }} owner=root group=root mode=0644
|
|
with_items:
|
|
- certbot-renewal.service
|
|
- certbot-renewal.timer
|
|
|
|
- name: Activate letsencrypt renewal service
|
|
systemd:
|
|
name: certbot-renewal.timer
|
|
enabled: true
|
|
state: started
|
|
daemon_reload: true
|
|
|
|
- name: Open firewall holes for certbot standalone authenticator
|
|
ansible.posix.firewalld: service={{ item }} permanent=true state=enabled immediate=yes
|
|
with_items:
|
|
- http
|
|
when: configure_firewall
|
|
tags:
|
|
- firewall
|