ansible-base/roles/tlscert_acme_inwx/tasks/main.json

[
	{
		"name": "packages",
		"become": true,
		"ansible.builtin.apt": {
			"update_cache": true,
			"pkg": [
				"openssl",
				"python3-cryptography",
				"certbot"
			]
		}
	},
	{
		"name": "directories",
		"become": true,
		"loop": [
			"{{var_tlscert_acme_inwx_ssl_directory}}/private",
			"{{var_tlscert_acme_inwx_ssl_directory}}/csr",
			"{{var_tlscert_acme_inwx_ssl_directory}}/certs",
			"{{var_tlscert_acme_inwx_ssl_directory}}/chains",
			"{{var_tlscert_acme_inwx_ssl_directory}}/fullchains"
		],
		"ansible.builtin.file": {
			"state": "directory",
			"path": "{{item}}"
		}
	},
	{
		"name": "tools | inwx",
		"become": true,
		"ansible.builtin.copy": {
			"src": "inwx",
			"dest": "/usr/local/bin/inwx",
			"mode": "a+x"
		}
	},
	{
		"name": "tools | tls-get | script",
		"become": true,
		"ansible.builtin.copy": {
			"src": "tls-get",
			"dest": "/usr/local/bin/tls-get",
			"mode": "a+x"
		}
	},
	{
		"name": "tools | tls-get | conf",
		"become": true,
		"ansible.builtin.template": {
			"src": "tls-get-conf.json.j2",
			"dest": "/root/.tls-get-conf.json"
		}
	},
	{
		"name": "tools | pseudo queue | setup",
		"become": true,
		"ansible.builtin.cron": {
			"state": "present",
			"disabled": false,
			"name": "pseudo queue",
			"special_time": "reboot",
			"job": "bash -c \"(test -p /var/pseudoqueue || mkfifo --mode=0600 /var/pseudoqueue) && (while true ; do bash < /var/pseudoqueue ; done)\""
		}
	},
	{
		"name": "tools | pseudo queue | run",
		"become": true,
		"ansible.builtin.shell": {
			"cmd": "bash -c \"test -p /var/pseudoqueue || (mkfifo --mode=0600 /var/pseudoqueue && (while true ; do bash < /var/pseudoqueue ; done))\" &"
		}
	},
	{
		"name": "setup auto renewal",
		"become": true,
		"ansible.builtin.cron": {
			"state": "present",
			"disabled": false,
			"name": "TLS certificate for {{var_tlscert_acme_inwx_domain}}",
			"minute": "0",
			"hour": "2",
			"day": "1",
			"month": "*",
			"weekday": "*",
			"job": "echo '/usr/local/bin/tls-get {{var_tlscert_acme_inwx_domain}} --conf-path=/root/.tls-get-conf.json --target-directory={{var_tlscert_acme_inwx_ssl_directory}}' > /var/pseudoqueue"
		}
	},
	{
		"name": "run",
		"become": true,
		"ansible.builtin.shell": {
			"cmd": "/usr/local/bin/tls-get {{var_tlscert_acme_inwx_domain}} --conf-path=/root/.tls-get-conf.json --target-directory={{var_tlscert_acme_inwx_ssl_directory}}"
		}
	}
]
[ini] 2023-11-20 02:07:08 +01:00			`[`
			`{`
			`"name": "packages",`
			`"become": true,`
			`"ansible.builtin.apt": {`
[fix] role:tlscert_acme_inwx:apt update 2024-03-20 00:03:48 +01:00			`"update_cache": true,`
[ini] 2023-11-20 02:07:08 +01:00			`"pkg": [`
[fix] tls roles: packages 2023-11-29 16:52:23 +01:00			`"openssl",`
[res] 2024-06-03 23:54:59 +02:00			`"python3-cryptography",`
			`"certbot"`
[ini] 2023-11-20 02:07:08 +01:00			`]`
			`}`
			`},`
			`{`
[res] 2024-06-03 23:54:59 +02:00			`"name": "directories",`
[ini] 2023-11-20 02:07:08 +01:00			`"become": true,`
[mod] tls roles: use loop for setting up directories 2023-12-14 10:01:08 +01:00			`"loop": [`
			`"{{var_tlscert_acme_inwx_ssl_directory}}/private",`
			`"{{var_tlscert_acme_inwx_ssl_directory}}/csr",`
			`"{{var_tlscert_acme_inwx_ssl_directory}}/certs",`
[res] 2024-06-03 23:54:59 +02:00			`"{{var_tlscert_acme_inwx_ssl_directory}}/chains",`
[mod] tls roles: use loop for setting up directories 2023-12-14 10:01:08 +01:00			`"{{var_tlscert_acme_inwx_ssl_directory}}/fullchains"`
			`],`
[ini] 2023-11-20 02:07:08 +01:00			`"ansible.builtin.file": {`
			`"state": "directory",`
[mod] tls roles: use loop for setting up directories 2023-12-14 10:01:08 +01:00			`"path": "{{item}}"`
[ini] 2023-11-20 02:07:08 +01:00			`}`
			`},`
			`{`
[res] 2024-06-03 23:54:59 +02:00			`"name": "tools \| inwx",`
[fix] role:tlscert_acme_inwx 2023-11-20 16:01:49 +01:00			`"become": true,`
[res] 2024-06-03 23:54:59 +02:00			`"ansible.builtin.copy": {`
			`"src": "inwx",`
			`"dest": "/usr/local/bin/inwx",`
			`"mode": "a+x"`
[fix] role:tlscert_acme_inwx 2023-11-20 16:01:49 +01:00			`}`
			`},`
			`{`
[res] 2024-06-03 23:54:59 +02:00			`"name": "tools \| tls-get \| script",`
[fix] role:tlscert_acme_inwx 2023-11-20 16:01:49 +01:00			`"become": true,`
[res] 2024-06-03 23:54:59 +02:00			`"ansible.builtin.copy": {`
			`"src": "tls-get",`
			`"dest": "/usr/local/bin/tls-get",`
			`"mode": "a+x"`
[fix] role:tlscert_acme_inwx 2023-11-20 16:01:49 +01:00			`}`
			`},`
[ini] 2023-11-20 02:07:08 +01:00			`{`
[res] 2024-06-03 23:54:59 +02:00			`"name": "tools \| tls-get \| conf",`
[ini] 2023-11-20 02:07:08 +01:00			`"become": true,`
[res] 2024-06-03 23:54:59 +02:00			`"ansible.builtin.template": {`
			`"src": "tls-get-conf.json.j2",`
			`"dest": "/root/.tls-get-conf.json"`
[ini] 2023-11-20 02:07:08 +01:00			`}`
			`},`
[fix] role:tlscert_acme_inwx 2023-11-20 16:01:49 +01:00			`{`
[res] 2024-06-03 23:54:59 +02:00			`"name": "tools \| pseudo queue \| setup",`
[fix] role:tlscert_acme_inwx 2023-11-20 16:01:49 +01:00			`"become": true,`
[res] 2024-06-03 23:54:59 +02:00			`"ansible.builtin.cron": {`
			`"state": "present",`
			`"disabled": false,`
			`"name": "pseudo queue",`
			`"special_time": "reboot",`
			`"job": "bash -c \"(test -p /var/pseudoqueue \|\| mkfifo --mode=0600 /var/pseudoqueue) && (while true ; do bash < /var/pseudoqueue ; done)\""`
[fix] role:tlscert_acme_inwx 2023-11-20 16:01:49 +01:00			`}`
			`},`
[ini] 2023-11-20 02:07:08 +01:00			`{`
[res] 2024-06-03 23:54:59 +02:00			`"name": "tools \| pseudo queue \| run",`
[ini] 2023-11-20 02:07:08 +01:00			`"become": true,`
[res] 2024-06-03 23:54:59 +02:00			`"ansible.builtin.shell": {`
			`"cmd": "bash -c \"test -p /var/pseudoqueue \|\| (mkfifo --mode=0600 /var/pseudoqueue && (while true ; do bash < /var/pseudoqueue ; done))\" &"`
[ini] 2023-11-20 02:07:08 +01:00			`}`
			`},`
			`{`
[res] 2024-06-03 23:54:59 +02:00			`"name": "setup auto renewal",`
			`"become": true,`
			`"ansible.builtin.cron": {`
			`"state": "present",`
			`"disabled": false,`
			`"name": "TLS certificate for {{var_tlscert_acme_inwx_domain}}",`
			`"minute": "0",`
			`"hour": "2",`
			`"day": "1",`
			`"month": "*",`
			`"weekday": "*",`
			`"job": "echo '/usr/local/bin/tls-get {{var_tlscert_acme_inwx_domain}} --conf-path=/root/.tls-get-conf.json --target-directory={{var_tlscert_acme_inwx_ssl_directory}}' > /var/pseudoqueue"`
[ini] 2023-11-20 02:07:08 +01:00			`}`
			`},`
			`{`
[res] 2024-06-03 23:54:59 +02:00			`"name": "run",`
[ini] 2023-11-20 02:07:08 +01:00			`"become": true,`
[res] 2024-06-03 23:54:59 +02:00			`"ansible.builtin.shell": {`
			`"cmd": "/usr/local/bin/tls-get {{var_tlscert_acme_inwx_domain}} --conf-path=/root/.tls-get-conf.json --target-directory={{var_tlscert_acme_inwx_ssl_directory}}"`
[ini] 2023-11-20 02:07:08 +01:00			`}`
			`}`
			`]`