ansible-collection-webserver/roles/certbot/tasks/issue.yml

---

- name: issue certificates
  ansible.builtin.command: >-
    /usr/bin/certbot certonly
    --server {{ cert.server | default(certbot_acme_server) }}
    --agree-tos
    {% if cert.email | default(certbot_email) is none %}
    --register-unsafely-without-email
    {% else %}
    --email {{ cert.email | default(certbot_email) }}
    {% endif %}
    --cert-name {{ name }}
    --rsa-key-size {{ cert.rsa_key_size | default(certbot_rsa_key_size) }}

    {% if cert.challenge | default(certbot_challenge) == 'webroot' %}

    --webroot
    {% if cert.webroot_map is defined %}
    --webroot-map '{{ cert.webroot_map | to_json }}'
    {% else %}
    --webroot {{ cert.webroot }}
    {% for domain in cert.domains | default([name]) %}
    --domain {{ domain }}
    {% endfor %}
    {% endif %}
    
    {% else %}
    
    --{{ cert.challenge | default(certbot_challenge) }}
    {{ cert.challenge_freeform_arguments }}
    
    {% endif %}
  args:
    creates: "/etc/letsencrypt/live/{{ name }}/fullchain.pem"
  vars:
    name: "{{ item.key }}"
    cert: "{{ item.value }}"
  loop: "{{ certbot_certificates | dict2items }}"
Initial commit 2021-04-26 00:07:37 +02:00			`---`

			`- name: issue certificates`
Add option to install additional apache modules via apt 2023-01-23 22:31:15 +01:00			`ansible.builtin.command: >-`
Initial commit 2021-04-26 00:07:37 +02:00			`/usr/bin/certbot certonly`
			`--server {{ cert.server \| default(certbot_acme_server) }}`
			`--agree-tos`
			`{% if cert.email \| default(certbot_email) is none %}`
			`--register-unsafely-without-email`
			`{% else %}`
			`--email {{ cert.email \| default(certbot_email) }}`
			`{% endif %}`
			`--cert-name {{ name }}`
			`--rsa-key-size {{ cert.rsa_key_size \| default(certbot_rsa_key_size) }}`

			`{% if cert.challenge \| default(certbot_challenge) == 'webroot' %}`

			`--webroot`
			`{% if cert.webroot_map is defined %}`
certbot: Remove invalid argument from a filter when issuing certificates 2021-04-26 01:51:44 +02:00			`--webroot-map '{{ cert.webroot_map \| to_json }}'`
Initial commit 2021-04-26 00:07:37 +02:00			`{% else %}`
			`--webroot {{ cert.webroot }}`
			`{% for domain in cert.domains \| default([name]) %}`
			`--domain {{ domain }}`
			`{% endfor %}`
			`{% endif %}`

			`{% else %}`

			`--{{ cert.challenge \| default(certbot_challenge) }}`
			`{{ cert.challenge_freeform_arguments }}`

			`{% endif %}`
Fix certbot command task arguments 2021-04-26 00:37:40 +02:00			`args:`
			`creates: "/etc/letsencrypt/live/{{ name }}/fullchain.pem"`
Initial commit 2021-04-26 00:07:37 +02:00			`vars:`
			`name: "{{ item.key }}"`
			`cert: "{{ item.value }}"`
			`loop: "{{ certbot_certificates \| dict2items }}"`