2018-11-29 18:55:28 +01:00
|
|
|
---
|
2018-06-10 19:34:06 +02:00
|
|
|
- name: check if certificate exist
|
2021-08-24 18:18:42 +02:00
|
|
|
ansible.builtin.stat:
|
2018-07-07 19:24:56 +02:00
|
|
|
path: '/etc/letsencrypt/live/{{ item.name }}'
|
2018-11-25 20:24:19 +01:00
|
|
|
loop: '{{ certbot_domains }}'
|
2018-06-10 19:34:06 +02:00
|
|
|
register: st
|
|
|
|
|
tags: certbot
|
|
|
|
|
|
2021-08-24 18:47:19 +02:00
|
|
|
- name: check if a webservice is started on port 80
|
|
|
|
|
ansible.builtin.wait_for:
|
|
|
|
|
port: 80
|
|
|
|
|
state: started
|
|
|
|
|
timeout: 5
|
|
|
|
|
ignore_errors: true
|
|
|
|
|
register: web
|
2018-06-10 19:34:06 +02:00
|
|
|
tags: certbot
|
|
|
|
|
|
|
|
|
|
- name: create a new certificate
|
2021-08-24 18:18:42 +02:00
|
|
|
ansible.builtin.command: >
|
2018-11-26 18:12:43 +01:00
|
|
|
certbot certonly -n --agree-tos -d {{ item.item.name }} -m {{ certbot_mail }}
|
|
|
|
|
--webroot --webroot-path {{ certbot_path }} --rsa-key-size {{ certbot_key_size }}
|
2018-11-25 20:24:19 +01:00
|
|
|
loop: '{{ st.results }}'
|
2021-08-24 18:47:19 +02:00
|
|
|
when: (certbot_role == 'master' or item.item.name == ansible_fqdn) and not item.stat.exists and not web.failed
|
2018-06-10 19:34:06 +02:00
|
|
|
tags: certbot
|
|
|
|
|
|
|
|
|
|
- name: create a new certificate (standalone)
|
2021-08-24 18:18:42 +02:00
|
|
|
ansible.builtin.command: >
|
2018-11-26 18:12:43 +01:00
|
|
|
certbot certonly -n --agree-tos -d {{ item.item.name }} -m {{ certbot_mail }}
|
|
|
|
|
--standalone --rsa-key-size {{ certbot_key_size }}
|
2018-11-25 20:24:19 +01:00
|
|
|
loop: '{{ st.results }}'
|
2021-08-24 18:47:19 +02:00
|
|
|
when: (certbot_role == 'master' or item.item.name == ansible_fqdn) and not item.stat.exists and web.failed
|
2018-06-10 19:34:06 +02:00
|
|
|
tags: certbot
|
