浏览代码

automatic letsencryt certificate renewal

master
父节点
当前提交
f21997201b
共有 1 个文件被更改,包括 12 次插入0 次删除
  1. +12
    -0
      tasks/provider-letsencrypt.yml

+ 12
- 0
tasks/provider-letsencrypt.yml 查看文件

@@ -10,6 +10,18 @@
- include_tasks: key.yml
- include_tasks: csr.yml

- name: check if the certificate will expire soon
command: openssl x509 -checkend {{ 60*60*24*30 }} -noout -in {{certificate_file}}
register: _certificate_checkend
changed_when: _certificate_checkend.rc == 1
failed_when: _certificate_checkend.rc > 1

- name: delete certificate when certificate is about to expire
file:
path: "{{ certificate_file }}"
state: absent
when: _certificate_checkend.rc == 1

- name: letsencrypt request
letsencrypt:
account_key: "{{certificate_letsencrypt_account_key_file}}"


正在加载...
取消
保存