library/roles/letsencrypt-acmetool-client: The TOS document URL has changed. Reflect it int the acmetool configuration, otherwise the first configuration fails.

2016-08-04 16:57:32 +02:00 · 2016-08-04 16:57:32 +02:00 · c97f934863
parent 36d88eb220
commit c97f934863
2 changed files with 3 additions and 2 deletions
--- a/letsencrypt-acmetool-client/defaults/main.yml
+++ b/letsencrypt-acmetool-client/defaults/main.yml
@ -18,6 +18,8 @@ letsencrypt_acme_certs_dir: '{{ letsencrypt_acme_user_home }}/live/{{ ansible_fq
 letsencrypt_acme_services_scripts_dir: /usr/lib/acme/hooks

 # responses parameters
+letsencrypt_tos_url: 'https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'
+letsencrypt_acme_agree_tos: true  
 letsencrypt_acme_rsa_key_size: 4096
 # rsa|ecdsa
 letsencrypt_acme_key_type: ecdsa
@ -26,7 +28,6 @@ letsencrypt_acme_email: sysadmin@example.com
 # We 'listener' or 'proxy'. Use 'listener' if we need a certificate for a non web service.
 # Need to set cap_net_bind_service=+ep for the acmetool binary so that it is able to bind port 80 in that case.
 letsencrypt_acme_authenticator: proxy
-letsencrypt_acme_agree_tos: true

 # desired parameters
 letsencrypt_acme_domains:
--- a/letsencrypt-acmetool-client/templates/responses.j2
+++ b/letsencrypt-acmetool-client/templates/responses.j2
@ -1,5 +1,5 @@
 "acme-enter-email": "{{ letsencrypt_acme_email }}"
-"acme-agreement:https://letsencrypt.org/documents/LE-SA-v1.0.1-July-27-2015.pdf": {{ letsencrypt_acme_agree_tos }}
+"acme-agreement:{{ letsencrypt_tos_url }}": {{ letsencrypt_acme_agree_tos }}
 # https://acme-staging.api.letsencrypt.org/directory is the staging site.
 # This is the production site
 "acmetool-quickstart-choose-server": https://acme-v01.api.letsencrypt.org/directory