aboutsummaryrefslogtreecommitdiffstats
path: root/roles/acme/tasks/main.yml
diff options
context:
space:
mode:
Diffstat (limited to 'roles/acme/tasks/main.yml')
-rw-r--r--roles/acme/tasks/main.yml22
1 files changed, 12 insertions, 10 deletions
diff --git a/roles/acme/tasks/main.yml b/roles/acme/tasks/main.yml
index 5834cb5..f2d4ba3 100644
--- a/roles/acme/tasks/main.yml
+++ b/roles/acme/tasks/main.yml
@@ -1,31 +1,33 @@
+---
+
- name: generate acme-client configuration
- template:
+ ansible.builtin.template:
src: acme-client.conf.j2
dest: "{{ acme_configuration_file }}"
owner: 0
group: 0
- mode: 0644
+ mode: "0644"
- name: retrieve enabled domains # noqa: no-changed-when
- shell: |
+ ansible.builtin.shell: |
set -o pipefail
grep "^domain" /etc/acme-client.conf | cut -d " " -f 2
register: subdomains
- name: generate acme certificates # noqa: no-changed-when
- command: acme-client -v {{ item }}
+ ansible.builtin.command: acme-client -v {{ item }}
loop: "{{ subdomains.stdout_lines }}"
- register: result
+ register: acme_result_generation
failed_when:
- - result.rc != 0
- - "'certificate valid' not in result.stderr"
+ - acme_result_generation.rc != 0
+ - "'certificate valid' not in acme_result_generation.stderr"
- name: display registered certificates
- debug:
- var: result
+ ansible.builtin.debug:
+ msg: "{{ acme_result_generation.results | map(attribute='stderr') }}"
- name: enable automatic acme certificates update
- cron:
+ ansible.builtin.cron:
name: "automatic acme certificates update for subdomain : {{ item }}"
minute: 0
hour: 6,18
remember that computers suck.