diff options
Diffstat (limited to 'roles/acme/tasks/main.yml')
-rw-r--r-- | roles/acme/tasks/main.yml | 22 |
1 files changed, 12 insertions, 10 deletions
diff --git a/roles/acme/tasks/main.yml b/roles/acme/tasks/main.yml index 5834cb5..f2d4ba3 100644 --- a/roles/acme/tasks/main.yml +++ b/roles/acme/tasks/main.yml @@ -1,31 +1,33 @@ +--- + - name: generate acme-client configuration - template: + ansible.builtin.template: src: acme-client.conf.j2 dest: "{{ acme_configuration_file }}" owner: 0 group: 0 - mode: 0644 + mode: "0644" - name: retrieve enabled domains # noqa: no-changed-when - shell: | + ansible.builtin.shell: | set -o pipefail grep "^domain" /etc/acme-client.conf | cut -d " " -f 2 register: subdomains - name: generate acme certificates # noqa: no-changed-when - command: acme-client -v {{ item }} + ansible.builtin.command: acme-client -v {{ item }} loop: "{{ subdomains.stdout_lines }}" - register: result + register: acme_result_generation failed_when: - - result.rc != 0 - - "'certificate valid' not in result.stderr" + - acme_result_generation.rc != 0 + - "'certificate valid' not in acme_result_generation.stderr" - name: display registered certificates - debug: - var: result + ansible.builtin.debug: + msg: "{{ acme_result_generation.results | map(attribute='stderr') }}" - name: enable automatic acme certificates update - cron: + ansible.builtin.cron: name: "automatic acme certificates update for subdomain : {{ item }}" minute: 0 hour: 6,18 |