Jérémy Lecour
0fe0244116
Update Galaxy metadata (company, platforms and galaxy_tags)
2021-06-28 15:26:28 +02:00
Jérémy Lecour
2ed77c60f0
Improve Ansible syntax
...
replace « x | changed » by « x is changed »
add explicit « bool » filter
use « length » filter instead of string comparison
2021-05-09 23:06:42 +02:00
Jérémy Lecour
5138065059
Use 'loop' syntax instead of 'with_items'
2021-05-04 14:19:18 +02:00
Jérémy Lecour
f940bc3866
cerbot: use the legacy script on Debian 8 and 9
2021-02-04 16:34:24 +01:00
Jérémy Lecour
024d30ea43
evoacme: upstream release 21.01
2021-01-07 19:16:06 +01:00
Eric Morino
feda9a63d8
Add directive auth_basic off for nginx configuration
2020-12-24 10:03:43 +01:00
Jérémy Lecour
b6817cb62c
evoacme: upstream release 20.12
2020-12-01 22:27:05 +01:00
Jérémy Lecour
592030ee9a
evoacme: variable to disable Debian version check (default: False)
2020-11-21 09:59:10 +01:00
Jérémy Lecour
b43d0f3629
evoacme: upstream release 20.11
2020-11-19 21:21:07 +01:00
Ludovic Poujol
c8d4da532f
evoacme: Don't ignore hooks with . in the name (ignore when it's ".disable")
2020-10-20 10:58:51 +02:00
Jérémy Lecour
48174ad618
evoacme: remount /usr if necessary
2020-09-14 11:31:47 +02:00
Jérémy Lecour
4007b14c09
whitespaces
2020-09-14 11:17:54 +02:00
Jérémy Lecour
b818c348c2
evoacme: remove Debian 9 support
2020-09-11 11:09:45 +02:00
Jérémy Lecour
44ddc8047d
evoacme: disable empty task for hooks
2020-08-21 14:21:28 +02:00
Jérémy Lecour
f49bf5c72d
evoacme: use Let's Encrypt deploy hooks instead of evoacme hooks
2020-08-21 14:02:07 +02:00
Jérémy Lecour
a60deb276b
evoacme: upstream release 20.08
2020-08-21 14:01:06 +02:00
Jérémy Lecour
8ea1bac000
evoacme: update for new certbot role
...
* certbot is installed by the certbot role
* Apache/Nginx configuration is delegated to the certbot role
* No more "acme" user, everything is done with "root".
2020-08-21 13:36:24 +02:00
Jérémy Lecour
d9f9d03140
evoacme: read values from environment before defaults file
2020-06-05 11:31:42 +02:00
Jérémy Lecour
7f0931510f
evoacme: upstream release 20.06.1
2020-06-05 11:01:42 +02:00
Jérémy Lecour
1d5a30b144
evoacme: upstream release 20.06
2020-06-03 12:09:58 +02:00
Jérémy Lecour
7a9624fcc2
evoacme: remove shellcheck warnings
2020-04-16 09:44:25 +02:00
Jérémy Lecour
7283e34077
Replace version_compare() with version()
2020-02-25 10:45:35 +01:00
Jérémy Lecour
6801f4e00e
Add names to many blocks
2019-12-31 16:56:03 +01:00
Jérémy Lecour
79bb6103b8
Change "|version_compare" with "is version_compare"
2019-12-31 10:18:19 +01:00
Victor LABORIE
6f5e13f8b8
Add evolix prefix to include_role
2019-11-29 14:00:25 +01:00
Jérémy Lecour
ab8c6b13b8
evoacme: upstream version 19.11
2019-11-05 14:08:02 +01:00
Jérémy Lecour
aa28e9c1b8
change repositories URL
2019-03-21 15:31:58 +01:00
Eric Morino
db71907155
Remove chown root: /etc/ssl/private in make-csr.sh
2019-03-19 16:13:17 +01:00
Jérémy Lecour
8279092037
evoacme: add a renewal hook to commit changes in /etc/.git
2019-03-07 00:19:43 +01:00
Victor LABORIE
6469733d2f
evoacme: fix error handling in sed_cert_path_for_(apache|nginx)
2018-11-22 15:06:23 +01:00
Benoît S.
88b66dca24
Evoacme: Better usage of apache2ctl -t
...
By default apache2ctl is using stderr, even for displaying "Syntax OK".
So, we redirect it in stdout and remove "Syntax OK". Then we check the exit code.
2018-10-03 15:16:28 +02:00
Benoît S.
758a537a8d
For SANs certificates, also add a CN for the first domain
2018-07-12 11:12:29 +02:00
Benoît S.
de63c0747f
Support for SAN in self-signed certificates
2018-07-10 17:46:41 +02:00
Benoît S.
17159676d9
Add exit 0 after the command -v commands.
...
Otherwise it would exit 1 on nginx if you have not nginx installed.
2018-07-10 17:09:20 +02:00
Jérémy Lecour
77b5f84567
evoacme: disable old certbot cron also in cron.daily
2018-06-21 17:22:40 +02:00
Victor LABORIE
9f34db8f9a
evoacme: fix module detection in apache config
2018-06-20 11:07:23 +02:00
Jérémy Lecour
ce11c39ce4
evoacme: add a symlink for vhosts with old path
2018-03-30 18:45:26 +02:00
Jérémy Lecour
7385e2894e
evoacme: fix version comparison for evoacme
2018-03-30 18:43:03 +02:00
Benoît S.
a4a3569630
Show the certificate path when exiting with an error
2018-03-06 10:34:55 +01:00
Benoît S.
cdaad871b3
Be sure to check the exit code of certbot
...
If we use set -e but no -o pipefail with a pipe, the last command exit code is
used by set -e.
certbot | grep -v something
If the grep exit with a non-zero exit code, set -e stop the execution of the
script. We don't care about that grep, so we now use the PIPESTATUS.
2018-03-05 14:46:49 +01:00
Gregory Colpart
fb6cb79b41
Keep read right on group for software with non-root access like OpenLDAP
2018-01-28 17:13:23 +01:00
Jérémy Lecour
19b2da5b92
evoacme: exclude typical certbot directories
2018-01-22 18:27:37 +01:00
Jérémy Lecour
8f88a48e15
evoacme cron task : improve readability
...
* use long form options
* break line before pipe
2018-01-03 10:12:14 +01:00
Benoît S.
edf7bceee6
Add -r to xargs arguments
...
Why? Because if there is no certificates in /etc/letsencrypt it will call
evoacme with no args, resulting in an error.
2018-01-03 10:00:22 +01:00
Jérémy Lecour
37f701eb54
evoacme: typos
2017-12-08 10:22:32 +01:00
Jérémy Lecour
5980593470
evoacme: move nginx acme challenge conf
2017-12-08 09:46:16 +01:00
Jérémy Lecour
2ac7b60a39
evoacme: better documentation
2017-11-25 14:17:36 +01:00
Jérémy Lecour
708428d088
evoacme: store Nginx letsencrypt config file in snippets
2017-11-25 14:17:36 +01:00
Jérémy Lecour
375c3e6760
evoacme: crontab management
...
* simply rename certbot script to disable it
* use "evoacme" as file name for our custom cron script
2017-11-25 14:17:36 +01:00
Jérémy Lecour
7fee69ca22
evoacme: remove $()
2017-11-21 16:17:21 +01:00