diff options
| author |  Joe Banks <[email protected]> | 2022-03-14 22:58:58 +0000 |
|---|---|---|
| committer | Joe Banks <[email protected]> | 2022-03-14 23:42:37 +0000 |
| commit | c6357463caf3c0f63e152e9ec6f5fce3d7b9d145 (patch) | |
| tree | 12f0cacd06e999645324be69be211664d334ac42 /playbook.yml | |
| parent | Miscellaneous fixes to jumpcloud & NGINX mTLS (diff) | |
Add certbot roles
Add a certbot role that generates a certificate on the first host in the
NGINX group and then deploys it to all other NGINX hosts. As of now we
generate wildcard certs for pythondiscord.com and pydis.wtf.
A unique SSH key is generated for each replica host which is restricted
for security purposes. A deploy hook is installed to push renewals to
other hosts.
Diffstat (limited to 'playbook.yml')
| -rw-r--r-- | playbook.yml | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/playbook.yml b/playbook.yml index 126ad47..d7ca9bc 100644 --- a/playbook.yml +++ b/playbook.yml @@ -12,9 +12,10 @@ roles: - prometheus -- name: Deploy nginx to hosts +- name: Deploy nginx & certbot to hosts hosts: nginx roles: + - certbot - nginx - nginx-geoip - nginx-ufw |