From 8528ecb1102c9b09d5ad6213790eb1c0768fb7d7 Mon Sep 17 00:00:00 2001
From: Christian Segundo
Date: Thu, 20 Apr 2023 12:16:02 +0200
Subject: first commit

---
 tasks/main.yaml | 39 +++++++++++++++++++++++++++++++++++++++
 1 file changed, 39 insertions(+)
 create mode 100644 tasks/main.yaml

(limited to 'tasks/main.yaml')

diff --git a/tasks/main.yaml b/tasks/main.yaml
new file mode 100644
index 0000000..6d4e69d
--- /dev/null
+++ b/tasks/main.yaml
@@ -0,0 +1,39 @@
+---
+- name: Install certbot-dns-cloudflare
+  apt:
+    name: python3-certbot-dns-cloudflare
+
+- name: Create letsencrypt directory
+  file:
+    path: /etc/letsencrypt
+    state: directory
+    owner: root
+    group: root
+    mode: "0710"
+
+- name: Create letsencrypt configuration
+  copy:
+    dest: /etc/letsencrypt/cli.ini
+    owner: root
+    group: root
+    mode: "0700"
+    content: |
+      # Let's Encrypt site-wide configuration
+      dns-cloudflare-credentials = /etc/letsencrypt/dns-cloudflare.ini
+      # Use the ACME v2 staging URI for testing things
+      # server = https://acme-staging-v02.api.letsencrypt.org/directory
+      # Production ACME v2 API endpoint
+      server = https://acme-v02.api.letsencrypt.org/directory
+
+- name: Create dns-cloudflare configuration
+  copy:
+    dest: /etc/letsencrypt/dns-cloudflare.ini
+    owner: root
+    group: root
+    mode: "0700"
+    content: |
+      dns_cloudflare_api_token = {{ certbot_cloudflare_api_token }}
+
+- name: Create certificates
+  import_role:
+    name: geerlingguy.certbot
-- 
cgit v1.2.3