Ansible role that manages x509 certificates assigned by letsencrypt.org, using the acme.sh client.
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
Andrea Dell'Amico 82c5c2fa20
Remove the ignore_errors.
5 months ago
defaults Do not update the acme distribution by default. 9 months ago
files Set the root CA option into the main script. 3 years ago
handlers Letsencrypt acme-sh-client has its own repository. 4 years ago
meta The link to the fake certificate is not removed. 9 months ago
tasks Remove the ignore_errors. 5 months ago
templates Fix a typo. 2 years ago
tests Initial commit 4 years ago
vars Initial commit 4 years ago
.gitignore Add a .gitignore file. 9 months ago
LICENSE Initial commit 4 years ago
README.md Letsencrypt acme-sh-client has its own repository. 4 years ago

README.md

Role Name

A role that installs the acme.sh Letsencrypt.org client

Requirements

Git must be available as a package

Role Variables

Here are listed the most important defaults. See defaults/main.yml for the complete set of variables.

letsencrypt_acme_install: False
letsencrypt_acme_sh_git_install: True
letsencrypt_acme_sh_certificates_install_dir: '{{ ansible_fqdn }}'
letsencrypt_acme_sh_certificates_install_base_path: '{{ letsencrypt_acme_sh_user_home }}/live'
letsencrypt_acme_sh_certificates_install_path: '{{ letsencrypt_acme_sh_certificates_install_base_path }}/{{ letsencrypt_acme_sh_certificates_install_dir }}'
letsencrypt_acme_email: sysadmin@example.com
  • Set the following one to 80 if there is no web server that acts as reverse proxy.
letsencrypt_acme_standalone_port: 4402
letsencrypt_acme_sh_domains:
  - { domain: '{{ ansible_fqdn }}', standalone: True }

Dependencies

None

License

EUPL-1.2

Author Information

Andrea DellAmico, andrea.dellamico@isti.cnr.it