From 33b5c0fd837f13873dffc8ecb2cc91920bac3ef9 Mon Sep 17 00:00:00 2001
From: Luke Hoersten <luke@hoersten.org>
Date: Sat, 15 Aug 2020 17:54:09 -0500
Subject: Added certbot dns cloudflare role. Useful for when ISP blocks port
 80.

---
 certbot-dns-cloudflare/tasks/main.yaml        | 23 +++++++++++++++++++++++
 certbot-dns-cloudflare/templates/cred.conf.j2 |  2 ++
 2 files changed, 25 insertions(+)
 create mode 100644 certbot-dns-cloudflare/tasks/main.yaml
 create mode 100644 certbot-dns-cloudflare/templates/cred.conf.j2

(limited to 'certbot-dns-cloudflare')

diff --git a/certbot-dns-cloudflare/tasks/main.yaml b/certbot-dns-cloudflare/tasks/main.yaml
new file mode 100644
index 0000000..b80e554
--- /dev/null
+++ b/certbot-dns-cloudflare/tasks/main.yaml
@@ -0,0 +1,23 @@
+---
+
+- name: apt install dns cloudflare
+  become: yes
+  apt: name="python3-certbot-dns-cloudflare"
+
+- name: configure cloudflare credentials
+  become: yes
+  template:
+    src: "cred.conf.j2"
+    dest: "/etc/letsencrypt/cred.conf"
+    mode: "0600"
+    owner: "root"
+    group: "root"
+
+- name: configure renewal
+  become: yes
+  template:
+    src: "{{certbot_dns_cloudflare_conf}}"
+    dest: "/etc/letsencrypt/renewal/{{certbot_dns_cloudflare_domain}}.conf"
+    mode: "0644"
+    owner: "root"
+    group: "root"
diff --git a/certbot-dns-cloudflare/templates/cred.conf.j2 b/certbot-dns-cloudflare/templates/cred.conf.j2
new file mode 100644
index 0000000..73db188
--- /dev/null
+++ b/certbot-dns-cloudflare/templates/cred.conf.j2
@@ -0,0 +1,2 @@
+dns_cloudflare_email = {{certbot_dns_cloudflare_email}}
+dns_cloudflare_api_key = {{certbot_dns_cloudflare_api_key}}
-- 
cgit v1.2.3