Commit Graph

16 Commits

Author SHA1 Message Date
Andrea Dell'Amico 1648cc50e7 letsencrypt: Run the script that requires the certificates only when the desired file changed. 2017-10-30 15:41:31 +01:00
Andrea Dell'Amico 220af7bf9d letsencrypt-acme-tool: ocsp must staple option True by default. 2017-10-20 15:55:17 +02:00
Andrea Dell'Amico 2e766d138f library/roles/letsencrypt-acmetool-client/tasks/main.yml: Add an update_cache to the letsencrypt package installation task. 2016-11-02 16:56:36 +01:00
Andrea Dell'Amico bbab9edbeb library/roles/letsencrypt-acmetool-client/tasks/main.yml: Change the cron job task. Now if a user is specified, a file is required too. 2016-10-18 19:31:19 +02:00
Andrea Dell'Amico 7044dcd55f library/roles/letsencrypt-acmetool-client: Install libcap2-bin too. Needed to let acmetool bind port 80 when needed. 2016-10-03 22:56:27 +02:00
Andrea Dell'Amico 0bffd9592e library/roles/letsencrypt-acmetool-client/tasks/main.yml: add the tag letsencrypt_responses so that we can update the responses file only. Useful when the letsencrypt service agreement changes. 2016-09-09 13:39:03 +02:00
Andrea Dell'Amico eb7989f07a library: Fixed some typos and some ansible 2 compatibility warnings. 2016-09-05 18:11:36 +02:00
Andrea Dell'Amico a21d62af25 library/roles/letsencrypt-acmetool-client/tasks/main.yml: workaround for the distributions that do not have binaries capabilities support.
d4science-ghn-cluster: install letsencrypt certificates on the iMarine portal.
2016-05-28 16:31:52 +02:00
Andrea Dell'Amico b861552351 library/roles/letsencrypt-acmetool-client: New variable, default, true. If set to false the repository package installation is skipped. Useful to manage unsupported distributions. 2016-05-28 15:04:01 +02:00
Andrea Dell'Amico 34963cc94d library/roles/letsencrypt-acmetool-client: Fix the initialization procedure.
library/roles/ubuntu-deb-general/tasks/pki-basics.yml: A link to the fullchain was missing.
2016-05-06 13:22:34 +02:00
Andrea Dell'Amico 0bff1d735f library/roles/letsencrypt-acmetool-client/tasks/main.yml: Fix a typo. The fakecert key was not removed. 2016-04-27 16:45:09 +02:00
Andrea Dell'Amico 46b2d2cae8 library/roles/haproxy: Fixes to the letsencrypt scripts.
d4science-infrastructure/roles/redmine: support letsencrypt certificates on the dev redmine virtualhost.
library/roles/apache/tasks/apache-letsencrypt.yml: Support for letsencrypt (acme tool).
library/roles/ubuntu-deb-general/tasks/pki-basics.yml: Do not create the fake certificates if valid ones exist.
2016-04-22 18:03:57 +02:00
Andrea Dell'Amico b382db3b25 d4science-infrastructure/group_vars/ldap_liferay/all.yml: Enable ssl with the use of letsencrypt certificates.
library/roles/haproxy/files: Fix to the acme scripts, the certificate path has become /etc/pki/haproxy/haproxy.pem.
library/roles/openldap-server/tasks/openldap_initializazion.yml: Fix the certificates initialization.
library/roles/ubuntu-deb-general/tasks/pki-basics.yml: Create a self signed certificate while waiting the letsencrypt one.
2016-04-20 15:21:19 +02:00
Andrea Dell'Amico 908e7adce4 library/roles/letsencrypt-acmetool-client/tasks/main.yml: More fixes to the tasks and the scripts. It now works correctly against haproxy. 2016-04-18 17:01:05 +02:00
Andrea Dell'Amico 8fde6bb113 library/roles/haproxy/tasks: Fix to the letsencrypt hooks handling.
library/roles/letsencrypt-acmetool-client/tasks: Do not fail if the quickstart does not succeed. The web service could be not configured yet.
2016-04-16 18:48:54 +02:00
Andrea Dell'Amico 3fb8d41878 library/roles/letsencrypt-acmetool-client: Letsencrypt acmetool client. Better than the original one, can run as an unprivileged user. See https://support.d4science.org/issues/3164 2016-04-14 19:08:33 +02:00