initial ansible code

2022-10-09 21:41:56 +00:00
parent 4a64eab4a0
commit feaec34dd2
103 changed files with 4473 additions and 0 deletions
--- a/roles/lego/templates/lego.service.j2
+++ b/roles/lego/templates/lego.service.j2
@@ -0,0 +1,19 @@
+## Managed by Ansible ##
+
+[Unit]
+Description=Run lego renew
+After=network-online.target
+
+[Service]
+Type=oneshot
+Environment={{ lego_provider|upper }}_API_KEY={{ vault_ionos_token_dns }}
+ExecStart={{ lego_install_dir }}/lego \
+    {% for dns in certificate_domains %}
+    --domains="{{ dns }}" \
+    {%   endfor %}
+    {{ lego_cli_params|join(' ') }} \
+    renew 
+User=root
+
+[Install]
+WantedBy=multi-user.target
--- a/roles/lego/templates/lego.timer.j2
+++ b/roles/lego/templates/lego.timer.j2
@@ -0,0 +1,12 @@
+## Managed by Ansible ##
+
+[Unit]
+Description=Start lego renew
+
+[Timer]
+Persistent=true
+OnCalendar=Mon 05:00:00
+RandomizedDelaySec=3600
+
+[Install]
+WantedBy=timers.target