initial commit

tasks/main.yml

@@ -0,0 +1,24 @@
+- name: install crypto dependencies
+  apt:
+    pkg:
+      - openssl
+      - python3-openssl
+      - python3-cryptography
+
+- name: add group ssl-cert
+  group:
+    name: ssl-cert
+    system: true
+
+- name: set private folder owner
+  file:
+    path: /etc/ssl/private
+    mode: 0750
+    owner: root
+    group: ssl-cert
+
+- import_tasks: letsencrypt_setup.yml
+- include_tasks: "{{ certificates.certs[certname].backend|default(certificates.defaults.backend) }}_cert.yml"
+  loop: "{{ certificates.certs.keys()|list }}"
+  loop_control:
+    loop_var: certname