Merge pull request 'dehydrated role' (#2) from dkdent/netz39-infra-ansible:dehydrated-role into master
This commit is contained in:
commit
a7d5623893
5 changed files with 73 additions and 0 deletions
3
roles/dehydrated-domains/meta/main.yml
Normal file
3
roles/dehydrated-domains/meta/main.yml
Normal file
|
|
@ -0,0 +1,3 @@
|
||||||
|
---
|
||||||
|
dependencies:
|
||||||
|
- role: dehydrated
|
||||||
8
roles/dehydrated/defaults/main.yml
Normal file
8
roles/dehydrated/defaults/main.yml
Normal file
|
|
@ -0,0 +1,8 @@
|
||||||
|
---
|
||||||
|
dehydrated_version: "v0.7.0"
|
||||||
|
dehydrated_contact_email: ""
|
||||||
|
dehydrated_location: "/usr/local/share/dehydrated"
|
||||||
|
dehydrated_binary: "/usr/local/bin/dehydrated"
|
||||||
|
dehydrated_config_dir: "/usr/local/etc/dehydrated"
|
||||||
|
dehydrated_certs_dir: "{{ dehydrated_config_dir }}/certs"
|
||||||
|
dehydrated_wellknown_dir: "{{ dehydrated_config_dir }}/challenge"
|
||||||
6
roles/dehydrated/handlers/main.yml
Normal file
6
roles/dehydrated/handlers/main.yml
Normal file
|
|
@ -0,0 +1,6 @@
|
||||||
|
---
|
||||||
|
- name: dehydrated register
|
||||||
|
command: "{{ dehydrated_binary }} --register --accept-terms"
|
||||||
|
|
||||||
|
- name: dehydrated cron
|
||||||
|
command: "{{ dehydrated_binary }} --cron"
|
||||||
53
roles/dehydrated/tasks/main.yml
Normal file
53
roles/dehydrated/tasks/main.yml
Normal file
|
|
@ -0,0 +1,53 @@
|
||||||
|
---
|
||||||
|
- name: Gather package facts.
|
||||||
|
package_facts:
|
||||||
|
manager: "auto"
|
||||||
|
|
||||||
|
- name: Ensure git and curl are installed.
|
||||||
|
package:
|
||||||
|
name:
|
||||||
|
- git
|
||||||
|
- curl
|
||||||
|
state: present
|
||||||
|
|
||||||
|
- name: Clone dehydrated repo.
|
||||||
|
git:
|
||||||
|
repo: 'https://github.com/dehydrated-io/dehydrated.git'
|
||||||
|
dest: "{{ dehydrated_location }}"
|
||||||
|
version: "{{ dehydrated_version }}"
|
||||||
|
|
||||||
|
- name: Ensure dehydrated symlink is present.
|
||||||
|
file:
|
||||||
|
src: "{{ dehydrated_location }}/dehydrated"
|
||||||
|
dest: "{{ dehydrated_binary }}"
|
||||||
|
state: link
|
||||||
|
|
||||||
|
- name: Ensure config directory is present.
|
||||||
|
file:
|
||||||
|
path: "{{ dehydrated_config_dir }}"
|
||||||
|
state: directory
|
||||||
|
mode: "0711"
|
||||||
|
|
||||||
|
- name: Ensure wellknown directory is present.
|
||||||
|
file:
|
||||||
|
path: "{{ dehydrated_wellknown_dir }}"
|
||||||
|
state: directory
|
||||||
|
mode: "0755"
|
||||||
|
|
||||||
|
- name: Ensure certs directory is present.
|
||||||
|
file:
|
||||||
|
path: "{{ dehydrated_certs_dir }}"
|
||||||
|
state: directory
|
||||||
|
mode: "0700"
|
||||||
|
|
||||||
|
- name: Ensure domains.txt is present.
|
||||||
|
file:
|
||||||
|
path: "{{ dehydrated_config_dir }}/domains.txt"
|
||||||
|
state: touch
|
||||||
|
|
||||||
|
- name: Ensure config is present.
|
||||||
|
template:
|
||||||
|
src: config.j2
|
||||||
|
dest: "{{ dehydrated_config_dir }}/config"
|
||||||
|
notify: dehydrated register
|
||||||
|
|
||||||
3
roles/dehydrated/templates/config.j2
Normal file
3
roles/dehydrated/templates/config.j2
Normal file
|
|
@ -0,0 +1,3 @@
|
||||||
|
HOOK={{ dehydrated_config_dir }}/hook.sh
|
||||||
|
WELLKNOWN={{ dehydrated_wellknown_dir }}
|
||||||
|
CONTACT_EMAIL={{ dehydrated_contact_email }}
|
||||||
Loading…
Reference in a new issue