Skip to content
Snippets Groups Projects

feat: create single cert file and fullchain.pem

Merged Alexander Käb requested to merge create-individual-cert-file into main
2 files
+ 25
13
Compare changes
  • Side-by-side
  • Inline
Files
2
+ 21
11
@@ -47,22 +47,32 @@
@@ -47,22 +47,32 @@
lego -a --dns {{ certbot_dns_provider }}
lego -a --dns {{ certbot_dns_provider }}
--email {{ certbot_admin_email }} -d {{ lego_dflag }}
--email {{ certbot_admin_email }} -d {{ lego_dflag }}
--path {{ certbot_live_dir }}
--path {{ certbot_live_dir }}
run
run --no-bundle
environment: "{{ dns_provider_auth_env_variables }}"
environment: "{{ dns_provider_auth_env_variables }}"
register: lego
register: lego
changed_when: lego.rc == 0
changed_when: lego.rc == 0
- name: Mirror Letsencrypt Structure
- name: Mirror Letsencrypt Structure
ansible.builtin.copy:
block:
src: "{{ item.src }}"
- name: Copy cert and key files
dest: "{{ item.dest }}"
ansible.builtin.copy:
owner: root
src: "{{ item.src }}"
group: root
dest: "{{ item.dest }}"
mode: '0600'
owner: root
remote_src: true
group: root
loop:
mode: '0600'
- { src: "{{ certbot_live_dir }}/certificates/{{ certbot_fqdn_first }}.crt", dest: "{{ certbot_live_dir }}/fullchain.pem" }
remote_src: true
- { src: "{{ certbot_live_dir }}/certificates/{{ certbot_fqdn_first }}.key", dest: "{{ certbot_live_dir }}/privkey.pem" }
loop:
 
- { src: "{{ certbot_live_dir }}/certificates/{{ certbot_fqdn_first }}.crt", dest: "{{ certbot_live_dir }}/cert.pem" }
 
- { src: "{{ certbot_live_dir }}/certificates/{{ certbot_fqdn_first }}.key", dest: "{{ certbot_live_dir }}/privkey.pem" }
 
 
- name: Build fullchain.pem file
 
ansible.builtin.shell:
 
cmd: >-
 
cat "{{ certbot_live_dir }}/certificates/{{ certbot_fqdn_first }}.crt" >> "{{ certbot_live_dir }}/fullchain.pem" &&
 
cat "{{ certbot_live_dir }}/certificates/{{ certbot_fqdn_first }}.issuer.crt" >> "{{ certbot_live_dir }}/fullchain.pem"
 
changed_when: false
 
- name: Render Systemd Files
- name: Render Systemd Files
become: true
become: true
Loading