3 files changed, 31 insertions, 3 deletions

diff --git a/roles/web/tasks/certbot.yml b/roles/web/tasks/certbot.yml
new file mode 100644
index 0000000..bc0e50e
--- /dev/null
+++ b/roles/web/tasks/certbot.yml
@@ -0,0 +1,27 @@
+- name: Install certbot
+  ansible.builtin.package:
+    name:
+      - certbot
+    state: present
+
+- name: Configure certbot systemd service
+  ansible.builtin.copy:
+    src: roles/web/files/certbot/certbot.service
+    dest: /usr/lib/systemd/system
+    owner: root
+    group: root
+    mode: u+rw,g+r,o+r
+
+- name: Configure certbot systemd timer
+  ansible.builtin.copy:
+    src: roles/web/files/certbot/certbot.timer
+    dest: /usr/lib/systemd/system
+    owner: root
+    group: root
+    mode: u+rw,g+r,o+r
+
+- name: Enable certbot systemd timer
+  ansible.builtin.service:
+    name: certbot.timer
+    enabled: yes
+    state: started
diff --git a/roles/web/tasks/main.yml b/roles/web/tasks/main.yml
index 5b94d1b..831d6d6 100644
--- a/roles/web/tasks/main.yml
+++ b/roles/web/tasks/main.yml
@@ -1,2 +1,3 @@
 - ansible.builtin.import_tasks: roles/web/tasks/logrotate.yml
 - ansible.builtin.import_tasks: roles/web/tasks/nginx.yml
+- ansible.builtin.import_tasks: roles/web/tasks/certbot.yml
diff --git a/roles/web/tasks/nginx.yml b/roles/web/tasks/nginx.yml
index 108bb61..43f7058 100644
--- a/roles/web/tasks/nginx.yml
+++ b/roles/web/tasks/nginx.yml
@@ -4,7 +4,7 @@
       - nginx
     state: present
 
-- name: Enable nginx systemd unit 
+- name: Enable nginx systemd service
   ansible.builtin.service:
     name: nginx
     enabled: yes
@@ -23,7 +23,7 @@
 
 - name: Configure nginx
   ansible.builtin.copy:
-    src: roles/web/files/nginx.conf
+    src: roles/web/files/nginx/nginx.conf
     dest: /etc/nginx/nginx.conf
     owner: root
     group: root
@@ -33,7 +33,7 @@
 
 - name: Configure nginx logrotate
   ansible.builtin.copy:
-    src: roles/web/files/nginx
+    src: roles/web/files/nginx/nginx.logrotate
     dest: /etc/logrotate.d/nginx
     owner: root
     group: root