Use proper ssl cert config for prosody.

author: Luke Hoersten <[email protected]> 2020-09-05 21:31:59 -0500
committer: Luke Hoersten <[email protected]> 2020-09-05 21:31:59 -0500
commit: dbc6e0eca5171a87d0ee344df2650c4727c81040 (patch)
tree: a6d242c27b692880b22a13236be927e3dbec52d2 /prosody/tasks
parent: 95c0693bc586b331c4d140b9e85872159bc02988 (diff)
1 files changed, 8 insertions, 10 deletions
diff --git a/prosody/tasks/main.yaml b/prosody/tasks/main.yaml
index e58cd0b..97e1f16 100644
--- a/prosody/tasks/main.yaml
+++ b/prosody/tasks/main.yaml
@@ -20,19 +20,17 @@
   template: src="prosody.cfg.lua.j2" dest="/etc/prosody/conf.avail/{{prosody_vhost}}.cfg.lua"
   notify: restart prosody
 
-- name: copy ssl keys
+- name: install letsencrypt ssl deploy hook
   become: yes
   copy:
-    src: "{{item}}"
-    dest: "{{prosody_ssl_dir}}/"
-    remote_src: yes
-    mode: "0640"
-    owner: "root"
-    group: "prosody"
+    src: "prosody.sh"
+    dest: "/etc/letsencrypt/renewal-hooks/deploy/prosody.sh"
+    mode: "0755"
+
+- name: run letsencrypt ssl deploy hook
+  become: yes
+  command: "/etc/letsencrypt/renewal-hooks/deploy/prosody.sh"
   notify: restart prosody
-  loop:
-    - "{{prosody_ssl_privkey_src}}"
-    - "{{prosody_ssl_cert_src}}"
 
 - name: install db schema file
   become: yes
author	Luke Hoersten <[email protected]>	2020-09-05 21:31:59 -0500
committer	Luke Hoersten <[email protected]>	2020-09-05 21:31:59 -0500
commit	dbc6e0eca5171a87d0ee344df2650c4727c81040 (patch)
tree	a6d242c27b692880b22a13236be927e3dbec52d2 /prosody/tasks
parent	95c0693bc586b331c4d140b9e85872159bc02988 (diff)