Add certbot roles

Add a certbot role that generates a certificate on the first host in the NGINX group and then deploys it to all other NGINX hosts. As of now we generate wildcard certs for pythondiscord.com and pydis.wtf. A unique SSH key is generated for each replica host which is restricted for security purposes. A deploy hook is installed to push renewals to other hosts.
author: Joe Banks <[email protected]> 2022-03-14 22:58:58 +0000
committer: Joe Banks <[email protected]> 2022-03-14 23:42:37 +0000
commit: c6357463caf3c0f63e152e9ec6f5fce3d7b9d145 (patch)
tree: 12f0cacd06e999645324be69be211664d334ac42 /roles/certbot/README.md
parent: Miscellaneous fixes to jumpcloud & NGINX mTLS (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/roles/certbot/README.md b/roles/certbot/README.md
new file mode 100644
index 0000000..b9d3e36
--- /dev/null
+++ b/roles/certbot/README.md
@@ -0,0 +1,3 @@
+# Role "certbot"
+
+Installs certbot and the Cloudflare DNS plugin for certbot to provision and deploy TLS certificates for web properties.
author	Joe Banks <[email protected]>	2022-03-14 22:58:58 +0000
committer	Joe Banks <[email protected]>	2022-03-14 23:42:37 +0000
commit	c6357463caf3c0f63e152e9ec6f5fce3d7b9d145 (patch)
tree	12f0cacd06e999645324be69be211664d334ac42 /roles/certbot/README.md
parent	Miscellaneous fixes to jumpcloud & NGINX mTLS (diff)