Enable certbot for certificates renewal

author: Dmitry Ilvokhin <d@ilvokhin.com> 2023-12-21 18:08:22 +0000
committer: Dmitry Ilvokhin <d@ilvokhin.com> 2023-12-21 18:08:22 +0000
commit: 98deb6b468c52d09c69c699b02ab16791f557beb (patch)
tree: 3dd114dfd79a81f577c0ffa93e8bf3bd06d70759 /roles/web/tasks/certbot.yml
parent: 1fe154b136bce2fb063e39050d9bc0deb2279bb0 (diff)
download: infra-98deb6b468c52d09c69c699b02ab16791f557beb.tar.gz
infra-98deb6b468c52d09c69c699b02ab16791f557beb.tar.bz2
infra-98deb6b468c52d09c69c699b02ab16791f557beb.zip
1 files changed, 27 insertions, 0 deletions
diff --git a/roles/web/tasks/certbot.yml b/roles/web/tasks/certbot.yml
new file mode 100644
index 0000000..bc0e50e
--- /dev/null
+++ b/roles/web/tasks/certbot.yml
@@ -0,0 +1,27 @@
+- name: Install certbot
+  ansible.builtin.package:
+    name:
+      - certbot
+    state: present
+
+- name: Configure certbot systemd service
+  ansible.builtin.copy:
+    src: roles/web/files/certbot/certbot.service
+    dest: /usr/lib/systemd/system
+    owner: root
+    group: root
+    mode: u+rw,g+r,o+r
+
+- name: Configure certbot systemd timer
+  ansible.builtin.copy:
+    src: roles/web/files/certbot/certbot.timer
+    dest: /usr/lib/systemd/system
+    owner: root
+    group: root
+    mode: u+rw,g+r,o+r
+
+- name: Enable certbot systemd timer
+  ansible.builtin.service:
+    name: certbot.timer
+    enabled: yes
+    state: started
author	Dmitry Ilvokhin <d@ilvokhin.com>	2023-12-21 18:08:22 +0000
committer	Dmitry Ilvokhin <d@ilvokhin.com>	2023-12-21 18:08:22 +0000
commit	98deb6b468c52d09c69c699b02ab16791f557beb (patch)
tree	3dd114dfd79a81f577c0ffa93e8bf3bd06d70759 /roles/web/tasks/certbot.yml
parent	1fe154b136bce2fb063e39050d9bc0deb2279bb0 (diff)
download	infra-98deb6b468c52d09c69c699b02ab16791f557beb.tar.gz infra-98deb6b468c52d09c69c699b02ab16791f557beb.tar.bz2 infra-98deb6b468c52d09c69c699b02ab16791f557beb.zip