Last change
on this file since 14918 was
14911,
checked in by uli, 7 years ago
|
Append missing domains in letsencrypt playbook.
Adding domains in the h8 cert was really a one-liner run from the local
machine.
$ ansible-playbook -i h8.waeup.org, -b letsencrypt.yml
It took about five seconds and afterwards the SSL-cert on h8 was extended by
another two domains. In that time the cert was requested, signed, and
installed. Wow!
|
File size:
764 bytes
|
Rev | Line | |
---|
[14706] | 1 | --- |
---|
| 2 | # This ansible-playbook installs letsencrypt certs |
---|
| 3 | # |
---|
| 4 | # What it does: |
---|
| 5 | # - registers LE account |
---|
| 6 | # - requests/creates first-time certificates |
---|
| 7 | # - requests new certs if list of domains changed |
---|
| 8 | ## |
---|
| 9 | # REVIEW/EDIT THE VARS BELOW BEFORE RUNNING! |
---|
| 10 | # ALL DOMAINS MUST BE REGISTERED FOR TARGET HOST IN DNS! |
---|
| 11 | # |
---|
| 12 | # It will normally be run like this: |
---|
| 13 | # |
---|
| 14 | # ansible-playbook -b -i h8.waeup.org, letsencrypt.yml |
---|
| 15 | # |
---|
| 16 | - hosts: h8.waeup.org |
---|
| 17 | vars: |
---|
| 18 | letsencrypt_email: 'uli@gnufix.de' |
---|
[14911] | 19 | letsencrypt_domains: 'h8.waeup.org,v2.waeup.org,v3.waeup.org,v4.waeup.org,v5.waeup.org,v6.waeup.org,gopinkdreams.com,www.gopinkdreams.com' |
---|
[14706] | 20 | # set to true if you got some LE certs already, but the list of domains expanded |
---|
[14911] | 21 | letsencrypt_expand_domains: true |
---|
[14706] | 22 | roles: |
---|
| 23 | - letsencrypt |
---|
Note: See
TracBrowser for help on using the repository browser.