Commit graph

6 commits

Author SHA1 Message Date
julian aac049efb2 Use BIND 9 server instead of Cloudfl. for DNS-01 challenge via nsupdate
Co-authored-by: Jannik Beyerstedt <code@jannikbeyerstedt.de>
2023-04-27 23:38:14 +02:00
julian 4814ea8bda Use one ACME account key per host
This is nicer for us, since this avoids sharing a secret.
Also put certificate directories in `certs` sub-directory for better
organization.
2023-04-25 18:03:59 +02:00
julian f9c51842fd Make use of become in role 2023-04-25 17:13:10 +02:00
julian 6e9d07b6f6 Add some spacing between tasks 2023-04-25 16:59:02 +02:00
julian f8d89c9742 Use /etc/ansible_certs instead of /certs directory 2023-04-25 16:57:34 +02:00
yuri c407f93b0a
Add initial cert role 2023-04-25 13:49:45 +02:00