From af3c5d696f13f9a887a7895db855c0b389bcdd8c Mon Sep 17 00:00:00 2001
From: "flyingscorpio@clevo" <tfranken@protonmail.com>
Date: Fri, 20 Jan 2023 12:02:47 +0100
Subject: [PATCH] Add checks for when the challenge isn't changed

---
 roles/tunuifranken/tasks/letsencrypt.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/roles/tunuifranken/tasks/letsencrypt.yml b/roles/tunuifranken/tasks/letsencrypt.yml
index 99a82dd..31e2ac4 100644
--- a/roles/tunuifranken/tasks/letsencrypt.yml
+++ b/roles/tunuifranken/tasks/letsencrypt.yml
@@ -76,6 +76,7 @@
       ansible.builtin.file:
         path: "/var/www/acme/{{ letsencrypt_challenge['challenge_data']['tunuifranken.info']['http-01']['resource'] }}"
         state: absent
+      when: letsencrypt_challenge is changed and 'tunuifranken.info' in letsencrypt_challenge.challenge_data
 
 - name: Do dns-01 challenge
   become: true
@@ -106,6 +107,7 @@
     - name: Wait for DNS to propagate
       ansible.builtin.pause:
         seconds: 300
+      when: letsencrypt_challenge is changed and 'tunuifranken.info' in letsencrypt_challenge.challenge_data
     - name: Validate the challenge and get the cert
       community.crypto.acme_certificate:
         acme_version: 2
@@ -124,3 +126,4 @@
         record: "{{ letsencrypt_challenge.challenge_data['tunuifranken.info']['dns-01'].resource }}"
         type: TXT
         state: absent
+      when: letsencrypt_challenge is changed and 'tunuifranken.info' in letsencrypt_challenge.challenge_data