1
0
forked from infra/ansible

acertmgr: migrate from legacy paths

This commit is contained in:
Markus 2019-05-20 19:49:08 +02:00
parent 17f25f2c32
commit 4ee7c6ad16
16 changed files with 17 additions and 18 deletions

View File

@ -2,7 +2,7 @@
acertmgr_mode: webdir
acme_dnskey_file: /etc/acme/nsupdate.key
acme_dnskey_file: /etc/acertmgr/nsupdate.key
acme_dnskey_server: neon.binary-kitchen.net
dns_axfr_ips:

View File

@ -2,5 +2,4 @@
mode: {{ acertmgr_mode }}
webdir: /var/www/acme-challenge/
ttl_days: 30
authority: "https://acme-v01.api.letsencrypt.org"
authority_tos_agreement: true

View File

@ -1,5 +1,5 @@
---
acme_dnskey_file: /etc/acme/nsupdate.key
acme_dnskey_file: /etc/acertmgr/nsupdate.key
acme_dnskey_algorithm: hmac-sha512
acme_dnskey_server: neon.binary-kitchen.net

View File

@ -34,7 +34,7 @@
notify: Restart nginx
- name: Configure certificate manager
template: src=certs.j2 dest=/etc/acme/domains.d/{{ dss_domain }}.conf
template: src=certs.j2 dest=/etc/acertmgr/{{ dss_domain }}.conf
notify: Run acertmgr
- name: Configure vhosts

View File

@ -33,7 +33,7 @@
notify: Restart nginx
- name: Configure certificate manager for gogs
template: src=certs.j2 dest=/etc/acme/domains.d/{{ gogs_domain }}.conf
template: src=certs.j2 dest=/etc/acertmgr/{{ gogs_domain }}.conf
notify: Run acertmgr
- name: Configure vhost

View File

@ -71,7 +71,7 @@
notify: Restart nginx
- name: Configure certificate manager for hackmd
template: src=certs.j2 dest=/etc/acme/domains.d/{{ hackmd_domain }}.conf
template: src=certs.j2 dest=/etc/acertmgr/{{ hackmd_domain }}.conf
notify: Run acertmgr
- name: Configure vhost

View File

@ -59,7 +59,7 @@
- "{{ librenms_domain }}"
- name: Configure certificate manager for librenms
template: src=certs.j2 dest=/etc/acme/domains.d/{{ librenms_domain }}.conf
template: src=certs.j2 dest=/etc/acertmgr/{{ librenms_domain }}.conf
notify: Run acertmgr
- name: Configure vhost

View File

@ -143,11 +143,11 @@
- default/spamassassin
- name: Configure certificate manager
template: src=certs.j2 dest=/etc/acme/domains.d/{{ mail_server }}_mail.conf
template: src=certs.j2 dest=/etc/acertmgr/{{ mail_server }}_mail.conf
notify: Run acertmgr
- name: Configure certificate manager for mailman
template: src=mailman/certs.j2 dest=/etc/acme/domains.d/{{ mailman_domain }}_mailman.conf
template: src=mailman/certs.j2 dest=/etc/acertmgr/{{ mailman_domain }}_mailman.conf
notify: Run acertmgr
- name: Start amavis

View File

@ -31,7 +31,7 @@
notify: Restart nginx
- name: Configure certificate manager for owncloud
template: src=certs.j2 dest=/etc/acme/domains.d/{{ owncloud_domain }}.conf
template: src=certs.j2 dest=/etc/acertmgr/{{ owncloud_domain }}.conf
notify: Run acertmgr
- name: Create vhost directory

View File

@ -16,7 +16,7 @@
notify: Restart nginx
- name: Configure certificate manager
copy: src=certs dest=/etc/acme/domains.d/partdb.binary-kitchen.de.conf
copy: src=certs dest=/etc/acertmgr/partdb.binary-kitchen.de.conf
notify: Run acertmgr
- name: Configure vhosts

View File

@ -32,7 +32,7 @@
notify: Restart prosody
- name: Configure certificate manager
template: src=certs.j2 dest=/etc/acme/domains.d/{{ prosody_domain }}_prosody.conf
template: src=certs.j2 dest=/etc/acertmgr/{{ prosody_domain }}_prosody.conf
notify: Run acertmgr
- name: Start saslauthd

View File

@ -4,7 +4,7 @@
include_role: name=acme-dnskey-generate
- name: Configure certificate manager
template: src=certs.j2 dest=/etc/acme/domains.d/{{ ansible_fqdn }}.conf
template: src=certs.j2 dest=/etc/acertmgr/{{ ansible_fqdn }}.conf
notify: Run acertmgr
- name: Configure vhosts

View File

@ -38,7 +38,7 @@
- "{{ racktables_domain }}"
- name: Configure certificate manager for racktables
template: src=certs.j2 dest=/etc/acme/domains.d/{{ racktables_domain }}.conf
template: src=certs.j2 dest=/etc/acertmgr/{{ racktables_domain }}.conf
notify: Run acertmgr
- name: Configure vhost

View File

@ -19,7 +19,7 @@
- "{{ radius_cn }}"
- name: Configure certificate manager for radius
template: src=certs.j2 dest=/etc/acme/domains.d/{{ radius_hostname }}.conf
template: src=certs.j2 dest=/etc/acertmgr/{{ radius_hostname }}.conf
notify: Run acertmgr
- name: Create DH parameters

View File

@ -39,7 +39,7 @@
- "{{ slapd_san }}"
- name: Configure certificate manager for slapd
template: src=certs.j2 dest=/etc/acme/domains.d/{{ slapd_hostname }}.conf
template: src=certs.j2 dest=/etc/acertmgr/{{ slapd_hostname }}.conf
notify: Run acertmgr
- name: Start slapd

View File

@ -24,7 +24,7 @@
notify: Restart nginx
- name: Configure certificate manager
copy: src=certs dest=/etc/acme/domains.d/www.binary-kitchen.de.conf
copy: src=certs dest=/etc/acertmgr/www.binary-kitchen.de.conf
notify: Run acertmgr
- name: Configure vhosts