infra/ansible-role-certificates
4
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Fix initial .complete.pem file creation for letsencrypt

Browse source
This commit is contained in:
Julian Rother 2025-01-26 00:55:03 +01:00
parent 1b7bb11f08
commit 240a7bdf22
Signed by: julian
GPG key ID: C19B924C0CD13341
1 changed files with 12 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

12
tasks/letsencrypt_cert.yml
View file

@ -126,6 +126,18 @@
<<: *acmetask <<: *acmetask
data: "{{ challenge }}" data: "{{ challenge }}"
- name: "generate concatinated versions (full) for {{ certname }}"
shell: "umask 0137; cat {{ cert.chainpath }} {{ cert.keypath }} > {{ cert.fullpath }}"
args:
creates: "{{ cert.fullpath }}"
- name: "set permissions for concatinated versions (full) for {{ certname }}"
file:
path: "{{ cert.fullpath }}"
mode: 0640
owner: root
group: ssl-cert
- name: store if the cert was changed - name: store if the cert was changed
set_fact: set_fact:
certchanged: "{{ challenge is changed }}" certchanged: "{{ challenge is changed }}"