✨ Add a role to allow letsencrypt access in Apache2

roles/apache-letsencrypt/defaults/main.yml

@@ -0,0 +1,3 @@
+# Defaults for role apache-letsencrypt
+---
+dehydrated_location: "/usr/local/etc/dehydrated"

roles/apache-letsencrypt/handlers/main.yml

@@ -0,0 +1,6 @@
+# Handlers for role apache-letsencrypt
+---
+- name: restart apache2
+  service:
+    name: apache2
+    state: restarted

roles/apache-letsencrypt/tasks/main.yml

@@ -0,0 +1,20 @@
+# Tasks for role apache-letsencrypt
+---
+- name: Create configuration for access to dehydrated location
+  ansible.builtin.template:
+    src: templates/letsencrypt-directory.conf.j2
+    dest: /etc/apache2/conf-available/letsencrypt-directory.conf
+    mode: "0644"
+    owner: root
+    group: root
+  notify: restart apache2
+
+- name: Add symlink to enable configuration
+  ansible.builtin.file:
+    src: /etc/apache2/conf-available/letsencrypt-directory.conf
+    dest: /etc/apache2/conf-enabled/letsencrypt-directory.conf
+    state: link
+    mode: "0644"
+    owner: root
+    group: root
+  notify: restart apache2

roles/apache-letsencrypt/templates/letsencrypt-directory.conf.j2

@@ -0,0 +1,3 @@
+<Directory {{ dehydrated_location }}/challenge>
+        Require all granted
+</Directory>