2024-04-09 21:17:25 +02:00
|
|
|
---
|
|
|
|
|
|
|
|
|
|
- name: Make sure needed vars are defined
|
|
|
|
|
ansible.builtin.fail:
|
|
|
|
|
msg: "{{ item }} is undefined"
|
|
|
|
|
loop:
|
|
|
|
|
- "{{ add_cert_domain }}"
|
|
|
|
|
- "{{ add_cert_email }}"
|
|
|
|
|
- "{{ add_cert_post_hook }}"
|
|
|
|
|
when: item is undefined
|
|
|
|
|
|
|
|
|
|
- name: Get local public IP
|
|
|
|
|
ansible.builtin.uri:
|
2024-07-06 20:41:11 +02:00
|
|
|
url: "https://ipinfo.io/ip"
|
2024-04-09 21:17:25 +02:00
|
|
|
return_content: true
|
|
|
|
|
register: local_public_ip
|
|
|
|
|
|
|
|
|
|
- name: Get public IP of "{{ add_cert_domain }}"
|
|
|
|
|
ansible.builtin.set_fact:
|
|
|
|
|
target_public_ip: "{{ lookup('community.general.dig', add_cert_domain, '@1.1.1.1') }}"
|
|
|
|
|
|
|
|
|
|
- name: Deploy letsencrypt certificate (HTTP-01)
|
2024-07-06 20:41:11 +02:00
|
|
|
when: local_public_ip.content == target_public_ip
|
2024-04-09 21:17:25 +02:00
|
|
|
ansible.builtin.include_role:
|
|
|
|
|
name: add_cert_http_01
|
|
|
|
|
|
|
|
|
|
- name: Deploy letsencrypt certificate (DNS-01)
|
2024-07-06 20:41:11 +02:00
|
|
|
when: local_public_ip.content != target_public_ip
|
2024-04-09 21:17:25 +02:00
|
|
|
ansible.builtin.include_role:
|
|
|
|
|
name: add_cert_dns_01
|
