netz39-infra-ansible/roles/dehydrated/tasks/main.yml

60 lines
1.4 KiB
YAML
Raw Normal View History

2021-02-01 20:24:38 +01:00
---
- name: Gather package facts.
package_facts:
manager: "auto"
2021-02-09 21:38:49 +01:00
- name: Ensure git and curl are installed.
2021-02-09 19:35:33 +01:00
package:
2021-02-09 21:38:49 +01:00
name:
- git
- curl
2021-02-09 19:35:33 +01:00
state: present
2021-02-01 20:24:38 +01:00
- name: Clone dehydrated repo.
2021-02-07 21:13:00 +01:00
git:
repo: 'https://github.com/dehydrated-io/dehydrated.git'
2021-02-01 20:24:38 +01:00
dest: "{{ dehydrated_location }}"
version: "{{ dehydrated_version }}"
- name: Ensure dehydrated symlink is present.
2021-02-07 21:13:00 +01:00
file:
2021-02-01 20:24:38 +01:00
src: "{{ dehydrated_location }}/dehydrated"
2021-02-07 21:10:45 +01:00
dest: "{{ dehydrated_binary }}"
2021-02-01 20:24:38 +01:00
state: link
- name: Ensure config directory is present.
2021-02-07 21:13:00 +01:00
file:
path: "{{ dehydrated_config_dir }}"
state: directory
mode: "0711"
- name: Ensure wellknown directory is present.
file:
path: "{{ dehydrated_wellknown_dir }}"
state: directory
mode: "0755"
- name: Ensure certs directory is present.
file:
path: "{{ dehydrated_certs_dir }}"
state: directory
mode: "0700"
2021-02-01 20:24:38 +01:00
- name: Ensure domains.txt is present.
2021-02-07 21:13:00 +01:00
file:
path: "{{ dehydrated_config_dir }}/domains.txt"
state: touch
2021-02-01 20:24:38 +01:00
- name: Ensure config is present.
2021-02-07 21:13:00 +01:00
template:
src: config.j2
dest: "{{ dehydrated_config_dir }}/config"
2021-02-07 12:58:06 +01:00
notify: dehydrated register
2021-02-15 18:18:36 +01:00
- name: Install dehydrated cron job.
cron:
name: renew dehydrated certs
hour: dehydrated_cron_hour
minute: dehydrated_cron_minute
2021-02-16 20:01:11 +01:00
day: dehydrated_cron_day
2021-02-15 18:18:36 +01:00
job: "{{ dehydrated_binary }} -c -g"