45 lines
975 B
YAML
45 lines
975 B
YAML
---
|
|
- name: Install Nginx and dependencies
|
|
apt:
|
|
pkg: "{{item}}"
|
|
state: latest
|
|
update_cache: yes
|
|
with_items:
|
|
- certbot
|
|
tags:
|
|
- letsencrypt
|
|
|
|
- name: Get let's encrypt cert
|
|
shell: "curl https://letsencrypt.org/certs/lets-encrypt-x3-cross-signed.pem https://letsencrypt.org/certs/lets-encrypt-x4-cross-signed.pem > /etc/nginx/ssl/private/letsencrypt-certs.pem"
|
|
tags:
|
|
- letsencrypt
|
|
|
|
- name: Creates a cron file under /etc/cron.d
|
|
cron:
|
|
name: cerbot-renew
|
|
weekday: 1
|
|
minute: 30
|
|
hour: 2
|
|
user: root
|
|
job: "certbot renew >/dev/null 2>&1"
|
|
tags:
|
|
- letsencrypt
|
|
|
|
- name: Creates a cron file under /etc/cron.d
|
|
cron:
|
|
name: Reload server
|
|
weekday: 1
|
|
minute: 00
|
|
hour: 9
|
|
user: root
|
|
job: "/bin/systemctl reload nginx >/dev/null 2>&1"
|
|
tags:
|
|
- letsencrypt
|
|
|
|
- name: "Add Dryusdan's configuration"
|
|
file:
|
|
path: "/etc/nginx/conf.d/ssl_letsencrypt.conf"
|
|
state: absent
|
|
tags:
|
|
- letsencrypt
|