Jérémy Lecour
33cb1dd8ef
certbot: detect domains for SAN certificates
2021-10-14 17:38:42 +02:00
Jérémy Lecour
b908fc6cee
certbot: don't install legacy Certbot on Debian 9
2021-08-30 14:07:46 +02:00
Jérémy Lecour
51e414df31
certbot: syntax for "no-self-upgrade" variable
2021-08-30 14:07:11 +02:00
Jérémy Lecour
887c1552cb
certbot: sync_remote.sh uses quotes for variable export
2021-08-30 14:06:32 +02:00
Jérémy Lecour
139b342fbd
certbot: silence letsencrypt deprecation warnings
2021-07-20 17:19:57 +02:00
Jérémy Lecour
11813c31a4
certbot: add script for manual deploy hooks execution
continuous-integration/drone/push Build is passing
2021-06-30 14:29:03 +02:00
Jérémy Lecour
51462c724c
certbot: sync_remote excludes itself
2021-06-30 07:39:57 +02:00
Jérémy Lecour
b8c5ac3097
remove whitespace for stream redirection
2021-06-28 15:56:19 +02:00
Jérémy Lecour
f6dcce239b
certbot move hooks
continuous-integration/drone/push Build is passing
2021-06-07 13:04:12 +02:00
Jérémy Lecour
2ed77c60f0
Improve Ansible syntax
...
replace « x | changed » by « x is changed »
add explicit « bool » filter
use « length » filter instead of string comparison
2021-05-09 23:06:42 +02:00
Jérémy Lecour
eacdd2c7f2
cerbot: fix regexp syntax for sync_remote
2021-05-03 18:02:35 +02:00
Jérémy Lecour
92f28d85fe
certbot: configure remote servers
continuous-integration/drone/push Build is passing
2021-05-03 11:44:59 +02:00
Jérémy Lecour
1caae2437a
certbot: fix remote directory initialization
2021-05-03 11:44:44 +02:00
Jérémy Lecour
cc6acdbf34
certbot: sync_remote.sh is configurable
continuous-integration/drone/push Build is passing
2021-05-03 11:25:24 +02:00
Jérémy Lecour
f940bc3866
cerbot: use the legacy script on Debian 8 and 9
continuous-integration/drone/push Build is passing
2021-02-04 16:34:24 +01:00
Jérémy Lecour
0e32e0d2aa
certbot: use a fixed 1.9.0 version of the certbot-auto script (renamed "letsencrypt-auto")
continuous-integration/drone/push Build is passing
2021-01-07 18:55:44 +01:00
Jérémy Lecour
7ec0748383
certbot: detect domains if missing
continuous-integration/drone/push Build is passing
2020-12-24 13:56:43 +01:00
Jérémy Lecour
442e9bcda8
cerbot: hook to sync certificates to remote servers
2020-12-24 13:56:43 +01:00
Eric Morino
dd8b989bbe
Add directive auth_basic off for nginx configuration
continuous-integration/drone/push Build is passing
2020-12-24 10:02:27 +01:00
Jérémy Lecour
98f798b9fb
cerbot: parse HAProxy config file only if HAProxy is found
continuous-integration/drone/push Build is passing
2020-12-03 17:26:16 +01:00
Jérémy Lecour
3e67d92fd3
certbot: an empty change shouldn't raise an exception
continuous-integration/drone/push Build is passing
2020-09-16 12:07:27 +02:00
Jérémy Lecour
c7151a8de8
certbot: fix "no-self-upgrade" option
continuous-integration/drone/push Build is passing
2020-09-08 10:02:15 +02:00
Jérémy Lecour
d3e69eeeb5
certbot: fix haproxy hook (ssl cert directory detection)
...
continuous-integration/drone/push Build is passing
It was matching additional parameters.
Now it matches on the first argument after "crt"
2020-07-21 10:46:01 +02:00
Jérémy Lecour
ce0d61bcbd
certbot: detect HAProxy cert directory
2020-06-14 12:37:04 +02:00
Jérémy Lecour
3bd0a4ffb3
certbot: restore compatibility with old Nginx
2020-06-04 11:22:58 +02:00
Jérémy Lecour
9aed38b637
certbot: install certbot dependencies non-interactively for jessie
2020-06-04 11:22:58 +02:00
Jérémy Lecour
f3111b42e5
cerbot: add mod_jk and mod_proxy directives for the Apache challenge
continuous-integration/drone/push Build is passing
2020-04-20 10:49:50 +02:00
Jérémy Lecour
35549d2dea
certbot: execute manual install for sources mode
continuous-integration/drone/push Build is passing
2020-04-03 10:13:02 +02:00
Jérémy Lecour
69c98bf562
[WIP] certbot: add support for install from sources on Debian 8
2020-03-21 19:07:26 +01:00
Jérémy Lecour
65bc2c657d
certbot: commit hook must be executed at the end
continuous-integration/drone/push Build is passing
2020-02-25 10:46:21 +01:00
Jérémy Lecour
7283e34077
Replace version_compare() with version()
2020-02-25 10:45:35 +01:00
Jérémy Lecour
ca4c4adb59
certbot: commit all changes in /etc/.git
...
continuous-integration/drone/push Build is failing
On some servers, certificates can be copied directly in final
directories over SSH.
2020-02-11 12:06:40 +01:00
Jérémy Lecour
6801f4e00e
Add names to many blocks
2019-12-31 16:56:03 +01:00
Jérémy Lecour
79bb6103b8
Change "|version_compare" with "is version_compare"
2019-12-31 10:18:19 +01:00
Ludovic Poujol
0e58f34e18
certbot: Properly evaluate when apache is installed
...
continuous-integration/drone/push Build is failing
Checking the existence of /etc/apache2 is not enough as a condition to
validate the presence of apache.
Indeed, some packages (including certbot!!!), put some files in
/etc/apache2/conf-available even if apache isn't installed.
In those cases, the check is not correct, and we'll enter in the apache
block, and fail when we try to enable the configuration.
With this commit, we now validate the presence apache with the presence
of /usr/sbin/apachectl
2019-11-26 11:58:52 +01:00
Jérémy Lecour
cd9e17e8f6
certbot: reload the correct daemon
continuous-integration/drone/push Build is passing
2019-10-25 18:21:23 +02:00
Jérémy Lecour
68e6d6cb23
improve hooks maintainability
2019-09-27 14:03:39 +02:00
Jérémy Lecour
44b2480e03
certbot: improve hooks
2019-09-27 10:15:33 +02:00
Jérémy Lecour
3521d4a765
certbot: verify generated combined certificate file for HAProxy
2019-09-27 09:47:51 +02:00
Jérémy Lecour
86108999c1
certbot: check syntax in hooks just before reload
2019-09-27 09:31:22 +02:00
Jérémy Lecour
394e28b815
WIP: new certbot role
2019-09-27 00:21:29 +02:00
Jérémy Lecour
Eric Morino
Ludovic Poujol