Ansible role that manages x509 certificates assigned by letsencrypt.org, using the acme.sh client.

Go to file

Andrea Dell'Amico bb1f7f5340 The link to the fake certificate is not removed.		2023-06-24 15:55:07 +02:00
defaults	The link to the fake certificate is not removed.	2023-06-24 15:55:07 +02:00
files	Set the root CA option into the main script.	2021-09-28 13:43:38 +02:00
handlers	Letsencrypt acme-sh-client has its own repository.	2020-05-17 16:39:11 +02:00
meta	The link to the fake certificate is not removed.	2023-06-24 15:55:07 +02:00
tasks	The link to the fake certificate is not removed.	2023-06-24 15:55:07 +02:00
templates	Fix a typo.	2022-05-25 11:02:33 +02:00
tests	Initial commit	2020-05-17 16:07:02 +02:00
vars	Initial commit	2020-05-17 16:07:02 +02:00
.gitignore	Initial commit	2020-05-17 16:07:02 +02:00
LICENSE	Initial commit	2020-05-17 16:07:02 +02:00
README.md	Letsencrypt acme-sh-client has its own repository.	2020-05-17 16:39:11 +02:00

README.md

Role Name

A role that installs the acme.sh Letsencrypt.org client

Requirements

Git must be available as a package

Role Variables

Here are listed the most important defaults. See defaults/main.yml for the complete set of variables.

letsencrypt_acme_install: False
letsencrypt_acme_sh_git_install: True
letsencrypt_acme_sh_certificates_install_dir: '{{ ansible_fqdn }}'
letsencrypt_acme_sh_certificates_install_base_path: '{{ letsencrypt_acme_sh_user_home }}/live'
letsencrypt_acme_sh_certificates_install_path: '{{ letsencrypt_acme_sh_certificates_install_base_path }}/{{ letsencrypt_acme_sh_certificates_install_dir }}'
letsencrypt_acme_email: sysadmin@example.com

Set the following one to 80 if there is no web server that acts as reverse proxy.

letsencrypt_acme_standalone_port: 4402
letsencrypt_acme_sh_domains:
  - { domain: '{{ ansible_fqdn }}', standalone: True }

Dependencies

None

License

EUPL-1.2

Author Information

Andrea Dell’Amico, andrea.dellamico@isti.cnr.it

README.md Unescape Escape