1 #####################################
2 ### someone's ansible provisioner ###
3 #####################################
4 # Part of: https://git.somenet.org/root/pub/somesible.git
5 # 2017-2024 by someone <someone@somenet.org>
8 - name: install letsencrypt-bot
16 ignore_errors: "{{ignore_online_errors | bool}}"
19 - name: create letsencrypt user
22 home: "/var/lib/letsencrypt"
29 - name: create letsencrypt user's homedir
31 path: "/var/lib/letsencrypt"
38 - name: create letsencrypt challenge dir
40 path: "/var/www/html/dehydrated"
47 - name: create letsencrypt cert dir
49 path: "/etc/ssl/letsencrypt"
56 - name: fix dehydrated dir permissions
58 path: "/etc/dehydrated"
65 - name: copy config.sh
68 dest: "/etc/dehydrated/conf.d/config.sh"
73 - "{{lookup('env','PWD')}}/host_files/{{inventory_hostname}}/{{role_name}}/config.sh"
74 - "{{lookup('env','PWD')}}/group_files/{{group_files_group}}/{{role_name}}/config.sh"
75 - "{{lookup('env','PWD')}}/group_files/all/{{role_name}}/config.sh"
82 dest: "/etc/dehydrated/hook.sh"
87 - "{{lookup('env','PWD')}}/host_files/{{inventory_hostname}}/{{role_name}}/hook.sh"
88 - "{{lookup('env','PWD')}}/group_files/{{group_files_group}}/{{role_name}}/hook.sh"
89 - "{{lookup('env','PWD')}}/group_files/all/{{role_name}}/hook.sh"
93 - name: copy domains.txt header
96 dest: "/etc/dehydrated/domains.txt"
101 - "{{lookup('env','PWD')}}/host_files/{{inventory_hostname}}/{{role_name}}/domains.txt"
102 - "{{lookup('env','PWD')}}/group_files/{{group_files_group}}/{{role_name}}/domains.txt"
103 - "{{lookup('env','PWD')}}/group_files/all/{{role_name}}/domains.txt"
104 - "default/domains.txt"
108 - name: register with letsencrypt
109 command: "/usr/bin/dehydrated --register --accept-terms"
111 creates: "/var/lib/letsencrypt/accounts/"
113 become_user: "letsencrypt"
117 - name: copy crontab entry
120 dest: "/etc/cron.d/letsencrypt-dehydrated"
125 - "{{lookup('env','PWD')}}/host_files/{{inventory_hostname}}/{{role_name}}/letsencrypt-dehydrated.cron"
126 - "{{lookup('env','PWD')}}/group_files/{{group_files_group}}/{{role_name}}/letsencrypt-dehydrated.cron"
127 - "{{lookup('env','PWD')}}/group_files/all/{{role_name}}/letsencrypt-dehydrated.cron"
128 - "default/letsencrypt-dehydrated.cron"