ACME.sh support role #16

Merged

kishi merged 1 commits from :master into master 2018-09-12 20:47:11 +02:00

Conversation 0 Commits 1 Files Changed 1 +1

kishi commented 2018-09-11 14:06:28 +02:00

Owner

Copy Link

Adds support for acme.sh rollout using DNS-01.

Certificates will be generated at

/etc/ssl/private/host.{cert|ca|key|fullchain}

by default. Put reload scripts into /etc/reload.d/ and mark them executable to have them run after certificate successful issue/renewal.

Subject alternate names (SAN) for hosts should be configured with the host_var (example for nabia.binary.kitchen is included):
acme_san_domains:

• "domain1.binary.kitchen"
• "domain2.binary.kitchen"

Adds support for acme.sh rollout using DNS-01. Certificates will be generated at /etc/ssl/private/host.{cert|ca|key|fullchain} by default. Put reload scripts into /etc/reload.d/ and mark them executable to have them run after certificate successful issue/renewal. Subject alternate names (SAN) for hosts should be configured with the host_var (example for nabia.binary.kitchen is included): acme_san_domains: - "domain1.binary.kitchen" - "domain2.binary.kitchen"

kishi closed this pull request 2018-09-12 20:47:11 +02:00

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels   

bug

  

duplicate

  

enhancement

  

help wanted

  

invalid

  

question

  

security

  

wontfix

No Label

bug

duplicate

enhancement

help wanted

invalid

question

security

wontfix

Milestone

Clear milestone

No items

No Milestone

Assignees

Clear assignees

No Assignees

1 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: infra/ansible#16

No description provided.