xoxys.certbot/defaults/main.yml

---
certbot_packages_extra: []

certbot_initial_run_enabled: False
certbot_work_dir: /var/lib/letsencrypt
certbot_config_dir: /etc/letsencrypt
certbot_log_dir: /var/log/letsencrypt
certbot_plugin_dir: /etc/letsencrypt/plugins
certbot_environment:
  - { name: "{{ certbot_work_dir }}", mode: '0755' }
  - { name: "{{ certbot_config_dir }}", mode: '0755' }
  - { name: "{{ certbot_log_dir }}", mode: '0700' }
  - { name: "{{ certbot_plugin_dir }}",  mode: '0755' }
certbot_user: root

certbot_preferred_challenges: dns
certbot_server: https://acme-v02.api.letsencrypt.org/directory
certbot_email: mail@example.com
certbot_rsa_key_size: 4096
certbot_domains:
  - example.com

certbot_command_arguments:
  - "certonly"
  - "--agree-tos"
  - "--manual"
  - "--manual-auth-hook /path/to/authenticator.py"
  - "--manual-cleanup-hook /path/to/cleanup.py"
  - "--manual-public-ip-logging-ok"
  - "-n"
  - "-d {{ certbot_domains | join(',') }}"

# enable scheduling via cron
certbot_scheduler_enabled: True

# Use a file under /etc/cron.d
# Works onyl if certbot_user is root
# certbot_cronfile: certbot-letsencrypt

# Setup manual auth for core-networks api
certbot_core_networks_plugin_enabled: False
certbot_core_networks_plugin_repo: https://git.rknet.org/xoxys/certbot_dns_corenetworks.git
certbot_core_networks_base_dir: "{{ certbot_plugin_dir }}/certbot_dns_corenetworks"
certbot_core_networks_plugin_version: master
certbot_core_networks_api_host: https://beta.api.core-networks.de/
certbot_core_networks_api_user: myuser
certbot_core_networks_api_password: secure
certbot_core_networks_dns_zone: mydomain.com
certbot_core_networks_log_level: error
optionally create user and setup directories 2018-06-22 21:18:48 +02:00			`---`
add missing epel dependency 2019-09-18 16:37:54 +02:00			`certbot_packages_extra: []`

add init task 2018-06-25 23:02:24 +02:00			`certbot_initial_run_enabled: False`
fix template destination 2018-06-22 22:03:31 +02:00			`certbot_work_dir: /var/lib/letsencrypt`
			`certbot_config_dir: /etc/letsencrypt`
			`certbot_log_dir: /var/log/letsencrypt`
add core-networks dns plugin 2018-06-23 16:27:01 +02:00			`certbot_plugin_dir: /etc/letsencrypt/plugins`
optionally create user and setup directories 2018-06-22 21:18:48 +02:00			`certbot_environment:`
add mode per directory option 2018-06-22 21:39:52 +02:00			`- { name: "{{ certbot_work_dir }}", mode: '0755' }`
			`- { name: "{{ certbot_config_dir }}", mode: '0755' }`
			`- { name: "{{ certbot_log_dir }}", mode: '0700' }`
add core-networks dns plugin 2018-06-23 16:27:01 +02:00			`- { name: "{{ certbot_plugin_dir }}", mode: '0755' }`
optionally create user and setup directories 2018-06-22 21:18:48 +02:00			`certbot_user: root`
add template for cli.ini 2018-06-22 21:57:22 +02:00
			`certbot_preferred_challenges: dns`
			`certbot_server: https://acme-v02.api.letsencrypt.org/directory`
			`certbot_email: mail@example.com`
			`certbot_rsa_key_size: 4096`
test cron creation 2018-06-23 15:29:05 +02:00			`certbot_domains:`
			`- example.com`

			`certbot_command_arguments:`
			`- "certonly"`
			`- "--agree-tos"`
			`- "--manual"`
			`- "--manual-auth-hook /path/to/authenticator.py"`
			`- "--manual-cleanup-hook /path/to/cleanup.py"`
			`- "--manual-public-ip-logging-ok"`
			`- "-n"`
			`- "-d {{ certbot_domains \| join(',') }}"`
fix quotes 2018-06-23 15:34:40 +02:00
make cronjob optional 2018-06-23 20:43:04 +02:00			`# enable scheduling via cron`
			`certbot_scheduler_enabled: True`

fix quotes 2018-06-23 15:34:40 +02:00			`# Use a file under /etc/cron.d`
			`# Works onyl if certbot_user is root`
			`# certbot_cronfile: certbot-letsencrypt`
add core-networks dns plugin 2018-06-23 16:27:01 +02:00
			`# Setup manual auth for core-networks api`
			`certbot_core_networks_plugin_enabled: False`
			`certbot_core_networks_plugin_repo: https://git.rknet.org/xoxys/certbot_dns_corenetworks.git`
fix missing quotes 2018-06-23 18:28:23 +02:00			`certbot_core_networks_base_dir: "{{ certbot_plugin_dir }}/certbot_dns_corenetworks"`
add core-networks dns plugin 2018-06-23 16:27:01 +02:00			`certbot_core_networks_plugin_version: master`
			`certbot_core_networks_api_host: https://beta.api.core-networks.de/`
			`certbot_core_networks_api_user: myuser`
			`certbot_core_networks_api_password: secure`
			`certbot_core_networks_dns_zone: mydomain.com`
add loglevel to plugin config 2018-06-23 19:43:35 +02:00			`certbot_core_networks_log_level: error`