ansible-infra/playbooks/roles/cert
julian 8bc60e42a8 Extend distribution_check role to account for Ansible changes reg. facts
Somewhere between ansible [core 2.14.4] and ansible [core 2.15.0] the
logic for the distribution_version Ansible fact got changed. With the
newer Ansible version Debians distribution_version gets reported as 11.7
as opposed to getting reported as 11 with the old Ansible version. To
still allow for useful distribution checks, extend the
distribution_check role by allowing the specification of
distribution_major_versions and distribution_releases as well.
This way you can check for an Ubuntu version by using
distribution_version (which for example resolves to 18.04, while
distribution_major_version would resolve to 18 in that case) and check
for a Debian version by using distribution_major_version (which for
example resolves to 11, while distribution_version would resolve to 11.7
in that case).
2023-07-08 19:58:02 +02:00
..
defaults Make it possible to set custom permissions for certificate files 2023-05-09 22:07:44 +02:00
meta Extend distribution_check role to account for Ansible changes reg. facts 2023-07-08 19:58:02 +02:00
tasks Make it possible to set custom permissions for certificate files 2023-05-09 22:07:44 +02:00
templates Use BIND 9 server instead of Cloudfl. for DNS-01 challenge via nsupdate 2023-04-27 23:38:14 +02:00
README.md Use Certbot naming for certificate files 2023-05-01 00:18:59 +02:00

Role cert

A role for ordering and renewing certificates from Lets Encrypt via ACME. It uses the DNS challenge and fullfills it via a BIND 9 server given to the role.

Supported Distributions

The following distributions are supported:

  • Debian 11

Required Arguments

For the required arguments look at the argument_specs.yaml

hosts

The hosts for this role need to be the machines on which you want to have the certificates.