Remove letsrenew role

This commit is contained in:
Alexander Dietrich 2018-03-26 22:23:47 +02:00
parent 1eac320d75
commit 15de2e680e
6 changed files with 0 additions and 80 deletions

View file

@ -9,8 +9,3 @@
roles:
- certsync
tags: certsync
- hosts: letsrenew
roles:
- letsrenew
tags: letsrenew

View file

@ -1,3 +1,2 @@
letsencrypt_webroot: /var/www/mail
letsrenew_email: alexander@hamburg.freifunk.net
nginx_resolver: 80.252.105.162 80.252.105.194

View file

@ -6,10 +6,6 @@ srv04 ansible_host=srv04.hamburg.freifunk.net
[certsync]
srv03
[letsrenew]
srv01
srv04
[updates]
srv01
srv03

View file

@ -1,3 +0,0 @@
---
letsencrypt_webroot: /var/www/letsencrypt
letsrenew_email: ""

View file

@ -1,40 +0,0 @@
---
- name: create /opt/certbot
file:
path: /opt/certbot
mode: 0750
state: directory
- name: download certbot
get_url:
url: https://raw.githubusercontent.com/certbot/certbot/master/certbot-auto
dest: /opt/certbot/certbot-auto
mode: 0550
- name: create webroot path
file:
path: "{{ letsencrypt_webroot }}"
state: directory
- name: create /etc/letsencrypt
file:
path: /etc/letsencrypt
state: directory
- name: template cli.ini
template:
src: cli.ini.j2
dest: /etc/letsencrypt/cli.ini
- name: clone letsrenew
git:
repo: https://github.com/7adietri/letsrenew.git
dest: /opt/letsrenew
- name: create cronjob
cron:
name: "Let's Encrypt certificate renewal"
job: "/opt/letsrenew/letsrenew {{ letsrenew_email }} /opt/certbot/certbot-auto"
minute: 0
hour: 6
weekday: 1

View file

@ -1,27 +0,0 @@
agree-tos = True
non-interactive = True
renew-by-default = True
text = True
# All flags used by the client can be configured here. Run Certbot with
# "--help" to learn more about the available options.
#
# Note that these options apply automatically to all use of Certbot for
# obtaining or renewing certificates, so options specific to a single
# certificate on a system with several certificates should not be placed
# here.
# Use a 4096 bit RSA key instead of 2048
rsa-key-size = 4096
# Uncomment and update to register with the specified e-mail address
email = backend@hamburg.freifunk.net
# Uncomment to use the standalone authenticator on port 443
# authenticator = standalone
# standalone-supported-challenges = tls-sni-01
# Uncomment to use the webroot authenticator. Replace webroot-path with the
# path to the public_html / webroot folder being served by your web server.
authenticator = webroot
webroot-path = {{ letsencrypt_webroot }}