Add systemd override to certbot.service to run certbot in the venv

roles/deploy_certificate/files/certbot.service.d/use_venv.conf

@@ -0,0 +1,3 @@
+[Service]
+ExecStart=
+ExecStart=/etc/letsencrypt/certbot_dns_infomaniak_venv/bin/certbot -q renew --no-random-sleep-on-renew

roles/deploy_certificate/tasks/main.yml

@@ -48,3 +48,25 @@
       - "{{ server_admin }}"
       - --agree-tos
     creates: "/etc/letsencrypt/live/{{ domain }}"
+
+- name: Create directory for certbot.service override
+  become: true
+  ansible.builtin.file:
+    path: /etc/systemd/system/certbot.service.d
+    state: directory
+    owner: root
+    group: root
+    mode: 0755
+
+- name: Create override for certbot.service
+  become: true
+  ansible.builtin.copy:
+    src: certbot.service.d/use_venv.conf
+    dest: /etc/systemd/system/certbot.service.d/use_venv.conf
+    owner: root
+    group: root
+    mode: 0644
+  notify: Reload systemd daemon
+
+- name: Make sure systemd daemon is reloaded
+  ansible.builtin.meta: flush_handlers