forked from CCCHH/ansible-infra
4814ea8bda
This is nicer for us, since this avoids sharing a secret. Also put certificate directories in `certs` sub-directory for better organization.
37 lines
1 KiB
YAML
37 lines
1 KiB
YAML
---
|
|
argument_specs:
|
|
main:
|
|
short_description: Orders and renews certificates from Let's Encrypt
|
|
options:
|
|
cert__domains:
|
|
description: Domains for which to issue a certificate. Must be in the same DNS zone.
|
|
required: true
|
|
type: list
|
|
elements: str
|
|
cert__owner:
|
|
description: Owner of the certificate files.
|
|
required: false
|
|
type: str
|
|
default: root
|
|
cert__group:
|
|
description: Group of the certificate files.
|
|
required: false
|
|
type: str
|
|
default: root
|
|
cert__acme_account_email:
|
|
description: E-Mail address for ACME account
|
|
required: true
|
|
type: str
|
|
cert__cloudflare_dns:
|
|
description: Cloudflare DNS API details
|
|
required: true
|
|
type: dict
|
|
options:
|
|
api_token:
|
|
description: Cloudflare API token
|
|
required: true
|
|
type: str
|
|
zone:
|
|
description: DNS zone the domain is in
|
|
required: true
|
|
type: str
|