rixx.dehydrated

A role to manage dehydrated for letsencrypt certificates, including update hooks and the cronjob.

Requirements

Any web server that will deliver the verification and use the ssl certificate will do. You can for example use this playbook.

dehydrated_well_known_path: /usr/share/nginx/letsencrypt: The path served for the challenge response, will contain the .acme/well_known directory.
dehydrated_ssl_services: [- nginx]: Services to be restarted on certificate updates.
dehydrated_deploy_hook_directory: "{{ dehydrated_cert_path }}/deploy_hooks/": Folder for scripts wich are run if a cert woud deployed
dehydrated_cert_path: /etc/ssl/letsencrypt: The path where dehydrated itself and all certificates fetched will be located.
dehydrated_domains: A list of domain lists to be requested as certificates. The first domain in each list is the primary one that will also be in the certificate file name and path. Format:

dehydrated_domains:
  - domains:
    - main1.de
    - www.main1.de
    - main2.de
  - domains:
    - mail.main1.de
  - domains:
    - wtf.main1.de

Including an example of how to use your role (for instance, with variables passed in as parameters) is always nice for users too:

- hosts: servers
  roles:
     - role: rixx.dehydrated
     - vars:
        dehydrated_domains:
          - domains:
              - my_domain.tld

BSD

rixx changed by pcopfer [email protected]

Name		Name	Last commit message	Last commit date
Latest commit History 21 Commits
defaults		defaults
handlers		handlers
meta		meta
tasks		tasks
templates		templates
tests		tests
vars		vars
.gitignore		.gitignore
README.md		README.md