mirror of
https://gitlab.archlinux.org/archlinux/infrastructure.git
synced 2024-05-05 18:46:02 +02:00
4112bdf9fd
yaml: truthy value should be one of [false, true] (truthy) yaml: wrong indentation: expected 4 but found 2 (indentation) yaml: too few spaces before comment (comments) yaml: missing starting space in comment (comments) yaml: too many blank lines (1 > 0) (empty-lines) yaml: too many spaces after colon (colons) yaml: comment not indented like content (comments-indentation) yaml: no new line character at the end of file (new-line-at-end-of-file) load-failure: Failed to load or parse file parser-error: couldn't resolve module/action 'hosts'. This often indicates a misspelling, missing collection, or incorrect module path.
32 lines
892 B
YAML
32 lines
892 B
YAML
---
|
|
|
|
- name: install certbot
|
|
pacman: name=certbot state=present
|
|
|
|
- name: install letsencrypt hook
|
|
copy: src=hook.sh dest=/etc/letsencrypt/hook.sh owner=root group=root mode=0755
|
|
|
|
- name: create letsencrypt hook dir
|
|
file: state=directory path=/etc/letsencrypt/hook.d owner=root group=root mode=0755
|
|
|
|
- name: install letsencrypt renewal service
|
|
copy: src={{ item }} dest=/etc/systemd/system/{{ item }} owner=root group=root mode=0644
|
|
with_items:
|
|
- certbot-renewal.service
|
|
- certbot-renewal.timer
|
|
|
|
- name: activate letsencrypt renewal service
|
|
systemd:
|
|
name: certbot-renewal.timer
|
|
enabled: true
|
|
state: started
|
|
daemon_reload: true
|
|
|
|
- name: open firewall holes for certbot standalone authenticator
|
|
ansible.posix.firewalld: service={{ item }} permanent=true state=enabled immediate=yes
|
|
with_items:
|
|
- http
|
|
when: configure_firewall
|
|
tags:
|
|
- firewall
|