source: main/waeup-ansible/letsencrypt.yml @ 14918

Last change on this file since 14918 was 14911, checked in by uli, 7 years ago

Append missing domains in letsencrypt playbook.

Adding domains in the h8 cert was really a one-liner run from the local
machine.

$ ansible-playbook -i h8.waeup.org, -b letsencrypt.yml

It took about five seconds and afterwards the SSL-cert on h8 was extended by
another two domains. In that time the cert was requested, signed, and
installed. Wow!

File size: 764 bytes
RevLine 
[14706]1---
2# This ansible-playbook installs letsencrypt certs
3#
4# What it does:
5#   - registers LE account
6#   - requests/creates first-time certificates
7#   - requests new certs if list of domains changed
8##
9# REVIEW/EDIT THE VARS BELOW BEFORE RUNNING!
10# ALL DOMAINS MUST BE REGISTERED FOR TARGET HOST IN DNS!
11#
12# It will normally be run like this:
13#
14#  ansible-playbook -b -i h8.waeup.org, letsencrypt.yml
15#
16- hosts: h8.waeup.org
17  vars:
18    letsencrypt_email: 'uli@gnufix.de'
[14911]19    letsencrypt_domains: 'h8.waeup.org,v2.waeup.org,v3.waeup.org,v4.waeup.org,v5.waeup.org,v6.waeup.org,gopinkdreams.com,www.gopinkdreams.com'
[14706]20    # set to true if you got some LE certs already, but the list of domains expanded
[14911]21    letsencrypt_expand_domains: true
[14706]22  roles:
23    - letsencrypt
Note: See TracBrowser for help on using the repository browser.