diff options
author | Egor Tensin <Egor.Tensin@gmail.com> | 2023-08-14 12:18:25 +0200 |
---|---|---|
committer | Egor Tensin <Egor.Tensin@gmail.com> | 2023-08-14 12:18:25 +0200 |
commit | 72e353a3bfd3ca26dd454d805fa95dfcc7ace0f5 (patch) | |
tree | 8c6b51bacf935407ce999faac137f1c41ca6187f /roles/letsencrypt/tasks/main.yml | |
parent | update task names & add more logging (diff) | |
download | infra-ansible-72e353a3bfd3ca26dd454d805fa95dfcc7ace0f5.tar.gz infra-ansible-72e353a3bfd3ca26dd454d805fa95dfcc7ace0f5.zip |
letsencrypt: split tasks into different files
Diffstat (limited to '')
-rw-r--r-- | roles/letsencrypt/tasks/main.yml | 55 |
1 files changed, 2 insertions, 53 deletions
diff --git a/roles/letsencrypt/tasks/main.yml b/roles/letsencrypt/tasks/main.yml index d12aad2..a4160d7 100644 --- a/roles/letsencrypt/tasks/main.yml +++ b/roles/letsencrypt/tasks/main.yml @@ -1,59 +1,8 @@ -- name: Install snapd - become: true - ansible.builtin.apt: - install_recommends: false - name: snapd - - name: Install Certbot - become: true - community.general.snap: - classic: true - name: certbot - -- name: Confirm plugin containment level - become: true - ansible.builtin.command: snap set certbot trust-plugin-with-root=ok - -- name: Install Certbot DigitalOcean plugin - become: true - community.general.snap: - name: certbot-dns-digitalocean - -- name: Create Certbot symlink in /usr/bin - become: true - ansible.builtin.file: - src: /snap/bin/certbot - dest: /usr/bin/certbot - state: link + ansible.builtin.include_tasks: certbot.yml - name: Configure Certbot DigitalOcean plugin - become: true - block: - - name: Prompt for token - ansible.builtin.pause: - prompt: | - Enter your API token: - echo: false - register: digitalocean_token - when: - - lookup('env', 'DIGITALOCEAN_TOKEN') | length <= 0 - - - name: Set the token as a fact - ansible.builtin.set_fact: - digitalocean_token: "{{ digitalocean_token.user_input | default(lookup('env', 'DIGITALOCEAN_TOKEN')) }}" - - - name: Fail if the token is invalid - ansible.builtin.fail: - msg: 'DigitalOcean token is invalid' - when: digitalocean_token | length == 0 - - - name: Configure certbot.ini - ansible.builtin.template: - src: certbot.ini - dest: '{{ certbot_ini }}' - owner: root - group: root - mode: '600' + ansible.builtin.include_tasks: digitalocean.yml - name: Create /etc/letsencrypt become: true |