Hubs: create letsencrypt certs

2017-08-11 15:23:46 +00:00 · 2017-08-11 15:23:46 +00:00 · b1d52167f4
commit b1d52167f4
parent 6086e4c18e
1 changed files with 11 additions and 3 deletions
--- a/playbooks/hosts/hubs-dev.fedorainfracloud.org.yml
+++ b/playbooks/hosts/hubs-dev.fedorainfracloud.org.yml
@ -54,12 +54,12 @@

  - role: hubs
    main_user: fedora
-    hubs_url_hostname: hubs-dev.fedorainfracloud.org
+    hubs_url_hostname: "{{ ansible_fqdn }}"
    hubs_secret_key: demotestinghubsmachine
    hubs_db_type: sqlite
    hubs_dev_mode: false
-    hubs_ssl_cert: /etc/letsencrypt/live/hubs-dev.fedorainfracloud.org/cert.pem
-    hubs_ssl_key: /etc/letsencrypt/live/hubs-dev.fedorainfracloud.org/privkey.pem
+    hubs_ssl_cert: /etc/letsencrypt/live/{{ ansible_fqdn }}/cert.pem
+    hubs_ssl_key: /etc/letsencrypt/live/{{ ansible_fqdn }}/privkey.pem


  tasks:
@ -76,3 +76,11 @@
    - hubs-triage@4
    - hubs-worker@3
    - hubs-worker@4
+
+  - name: install python2-certbot-nginx
+    dnf: name=python2-certbot-nginx state=present
+
+  - name: get the letencrypt cert
+    command: certbot certonly -n --nginx -d {{ ansible_fqdn }}
+    args:
+      creates: /etc/letsencrypt/live/{{ ansible_fqdn }}/privkey.pem