ramble-hard/lets_encrypt

main
Alpha Chen 2 years ago
parent 7a78a84621
commit 60955c1789
Signed by: alpha
SSH Key Fingerprint: SHA256:3fOT8fiYQG/aK9ntivV3Bqtg8AYQ7q4nV6ZgihOA20g

@ -0,0 +1,27 @@
- hosts: ramble-hard
tasks:
- name: install certbot
package:
name:
- certbot
- name: stop nginx
service:
name: nginx
state: stopped
- command: >
certbot certonly --standalone --preferred-challenges http
-n --agree-tos -m {{ lets_encrypt_email }}
-d {{ item }}
loop: "{{ lets_encrypt_tlds }}"
- service:
name: nginx
state: started
- template:
src: lets_encrypt/renew-certs
dest: /etc/cron.daily/renew-certs
mode: +x

@ -0,0 +1,2 @@
#!/bin/sh
certbot renew -w /var/lib/letsencrypt/ --pre-hook "systemctl stop nginx" --post-hook "systemctl start nginx"
Loading…
Cancel
Save