From 2b80d8b7628759b3f65f2d4fd3b86e86d162a10a Mon Sep 17 00:00:00 2001
From: Tunui Franken <tfranken@protonmail.com>
Date: Thu, 7 Mar 2024 16:45:44 +0100
Subject: [PATCH] Add post-hook for letsencrypt certificate

---
 inventory/group_vars/mailservers     | 1 +
 roles/add_cert_dns_01/tasks/main.yml | 2 ++
 roles/forgejo/tasks/main.yml         | 1 +
 3 files changed, 4 insertions(+)

diff --git a/inventory/group_vars/mailservers b/inventory/group_vars/mailservers
index 7476027..1ff365a 100644
--- a/inventory/group_vars/mailservers
+++ b/inventory/group_vars/mailservers
@@ -3,3 +3,4 @@
 virtual_domain: tunuifranken.info
 letsencrypt_email: "dns@{{ virtual_domain }}"
 letsencrypt_domain: "{{ ansible_hostname }}.{{ virtual_domain }}"
+letsencrypt_post_hook: systemctl restart postfix dovecot
diff --git a/roles/add_cert_dns_01/tasks/main.yml b/roles/add_cert_dns_01/tasks/main.yml
index e2092b0..759a1a6 100644
--- a/roles/add_cert_dns_01/tasks/main.yml
+++ b/roles/add_cert_dns_01/tasks/main.yml
@@ -41,6 +41,8 @@
       - -m
       - "{{ letsencrypt_email }}"
       - --agree-tos
+      - --post-hook
+      - "{{ letsencrypt_post_hook }}"
 
 - name: Set letsencrypt dns-01 challenge argv (staging)
   when: ansible_hostname.endswith('-test')
diff --git a/roles/forgejo/tasks/main.yml b/roles/forgejo/tasks/main.yml
index 764e80a..24f4844 100644
--- a/roles/forgejo/tasks/main.yml
+++ b/roles/forgejo/tasks/main.yml
@@ -5,6 +5,7 @@
   vars:
     letsencrypt_domain: "{{ forgejo_domain }}"
     letsencrypt_email: "{{ forgejo_server_admin }}"
+    letsencrypt_post_hook: systemctl restart apache2
 
 - name: Include apache2 tasks
   ansible.builtin.include_tasks: apache2.yml