28 lines
923 B
YAML
28 lines
923 B
YAML
- name: Install dependencies
|
|
apt:
|
|
pkg:
|
|
- nginx
|
|
- certbot
|
|
- python3-certbot-nginx
|
|
|
|
- name: Query lets encrypt certificate
|
|
shell: 'letsencrypt certonly -n --nginx -m {{ letsencrypt_email|default("me@chapoline.me") }} --expand --agree-tos -d {{ item.name }} {% for a in item.alias %} -d {{a}}{% endfor %}'
|
|
ignore_errors: true
|
|
notify: Restart nginx
|
|
|
|
- name: Create a few symbolic links
|
|
file:
|
|
src: "{{ item2.src }}"
|
|
dest: "{{ item2.dest }}"
|
|
state: link
|
|
force: true
|
|
loop:
|
|
- src: "/etc/letsencrypt/live/{{ item.name }}/privkey.pem"
|
|
dest: "/etc/ssl/private/{{ item.name }}.key"
|
|
- src: "/etc/letsencrypt/live/{{ item.name }}/cert.pem"
|
|
dest: "/etc/ssl/private/{{ item.name }}.crt"
|
|
- src: "/etc/letsencrypt/live/{{ item.name }}/fullchain.pem"
|
|
dest: "/etc/ssl/private/{{ item.name }}.chain.crt"
|
|
loop_control:
|
|
loop_var: item2
|
|
notify: Restart nginx
|