Commit Graph

14 Commits

Author SHA1 Message Date
Andrea Dell'Amico f36c4061d4 library/roles/letsencrypt-acmetool-client/defaults/main.yml: Add a new variable so that changing the certs dir is easier. 2018-04-11 15:27:02 +02:00
Andrea Dell'Amico ed312768d2 library/roles/letsencrypt-acmetool-client/defaults/main.yml: disable 'must staple' by default. Our nginx and haproxy are too old for that. 2018-04-03 11:56:47 +02:00
Andrea Dell'Amico 33fe3715b6 letsencrypt changed the TOS document. 2017-11-17 11:59:42 +01:00
Andrea Dell'Amico 220af7bf9d letsencrypt-acme-tool: ocsp must staple option True by default. 2017-10-20 15:55:17 +02:00
Andrea Dell'Amico 86422ed956 library/roles/letsencrypt-acmetool-client/defaults/main.yml: Change the default behaviour to 'listener' so that we can ask for a certificate if the web server is not yet configured. 2017-01-27 02:56:36 +01:00
Andrea Dell'Amico c9850ead39 library/roles/letsencrypt-acmetool-client/defaults/main.yml: Fix a typo. 2016-10-03 22:57:43 +02:00
Andrea Dell'Amico 7044dcd55f library/roles/letsencrypt-acmetool-client: Install libcap2-bin too. Needed to let acmetool bind port 80 when needed. 2016-10-03 22:56:27 +02:00
Andrea Dell'Amico c97f934863 library/roles/letsencrypt-acmetool-client: The TOS document URL has changed. Reflect it int the acmetool configuration, otherwise the first configuration fails. 2016-08-04 16:57:32 +02:00
Andrea Dell'Amico b861552351 library/roles/letsencrypt-acmetool-client: New variable, default, true. If set to false the repository package installation is skipped. Useful to manage unsupported distributions. 2016-05-28 15:04:01 +02:00
Andrea Dell'Amico bbe5258949 library/roles/letsencrypt-acmetool-client/templates/responses.j2: added the staging site to the responses template. 2016-04-17 14:20:44 +02:00
Andrea Dell'Amico bb862c8405 library/roles/openldap-server: Support for ssl when letsencrypt is enabled using the letsencrypt-acme-tool role. 2016-04-15 20:33:23 +02:00
Andrea Dell'Amico 37ff28468e library/roles/letsencrypt-acmetool-client/templates/cert-requirements.j2: rsa key dimension.
d4science-infrastructure/group_vars/ldap_liferay_dev/all.yml: openldap on ubuntu/debian is linked to gnuTLS and does not support ecdsa keys.
2016-04-15 20:03:05 +02:00
Andrea Dell'Amico 3085c6b817 library/roles/letsencrypt-acmetool-client/defaults/main.yml: Fix the hooks path
library/roles/haproxy: Scripts and tasks to add support for the acme letsencrypt tool.
2016-04-14 19:31:02 +02:00
Andrea Dell'Amico 3fb8d41878 library/roles/letsencrypt-acmetool-client: Letsencrypt acmetool client. Better than the original one, can run as an unprivileged user. See https://support.d4science.org/issues/3164 2016-04-14 19:08:33 +02:00