From aa2710ec320b5744405c26d216db039a57dc4c0e Mon Sep 17 00:00:00 2001 From: binary Date: Sat, 23 Jan 2021 12:30:17 +0100 Subject: Bare init for acme certificates generation --- roles/acme/tasks/main.yml | 34 ++++++++++++++++++++++++++++++++++ 1 file changed, 34 insertions(+) create mode 100644 roles/acme/tasks/main.yml (limited to 'roles/acme/tasks') diff --git a/roles/acme/tasks/main.yml b/roles/acme/tasks/main.yml new file mode 100644 index 0000000..ec23ceb --- /dev/null +++ b/roles/acme/tasks/main.yml @@ -0,0 +1,34 @@ + +# acme ~~ roles/acme/tasks/main.yml +# acme-client initialization +# OPENBSD-ONLY + +--- + +- name: ensure acme-client is installed + package: + name: acme-client + state: present + +- name: generate acme-client configuration + template: + src: acme-client.conf.j2 + dest: /etc/acme-client.conf + owner: "{{ user_root }}" + group: "{{ group_root }}" + mode: 0644 + +- name: generate acme certificates + shell: acme-client -v {{ global.domain_name }} + register: result + +- name: show acme-client output + debug: + var: result + +- name: enable automatic acme certificates update + cron: + name: "automatic acme certificates update" + minute: "0" + hour: "6,18" + job: "acme-client -v {{ global.domain_name }}" -- cgit v1.2.3