Jérémy Lecour
f940bc3866
All checks were successful
continuous-integration/drone/push Build is passing
60 lines
1.3 KiB
YAML
60 lines
1.3 KiB
YAML
---
|
|
|
|
- name: certbot package is removed
|
|
apt:
|
|
name: certbot
|
|
state: absent
|
|
|
|
- include_role:
|
|
name: evolix/remount-usr
|
|
|
|
- name: Let's Encrypt script is present
|
|
copy:
|
|
src: letsencrypt-auto
|
|
dest: /usr/local/bin/letsencrypt-auto
|
|
mode: '0755'
|
|
owner: root
|
|
group: root
|
|
force: yes
|
|
notify: install letsencrypt-auto
|
|
|
|
- name: Check certbot script
|
|
stat:
|
|
path: /usr/local/bin/certbot
|
|
register: certbot_path
|
|
|
|
- name: Rename certbot script if present
|
|
command: "mv /usr/local/bin/certbot /usr/local/bin/certbot.bak"
|
|
when: certbot_path.stat.exists
|
|
|
|
- name: Let's Encrypt script is symlinked as certbot
|
|
file:
|
|
src: "/usr/local/bin/letsencrypt-auto"
|
|
dest: "/usr/local/bin/certbot"
|
|
state: link
|
|
|
|
- name: systemd artefacts are absent
|
|
file:
|
|
dest: "{{ item }}"
|
|
state: absent
|
|
loop:
|
|
- /etc/systemd/system/certbot.service
|
|
- /etc/systemd/system/certbot.service.d
|
|
- /etc/systemd/system/certbot.timer
|
|
notify: systemd daemon-reload
|
|
|
|
- name: custom crontab is present
|
|
copy:
|
|
src: cron_jessie
|
|
dest: /etc/cron.d/certbot
|
|
force: yes
|
|
when: certbot_custom_crontab
|
|
|
|
- name: disable self-upgrade
|
|
ini_file:
|
|
dest: "/etc/letsencrypt/cli.ini"
|
|
section: null
|
|
option: "no-self-upgrade"
|
|
value: 0
|
|
state: present
|