blob: 865ca241d0777d6bdb9e5e6b51b8500606cab59d (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
|
define certbot::manage(
$pre_hook = '',
$ensure = present,
$email = hiera('certbot::manage::email'),
$size = hiera('certbot::manage::size', '4096'),
){
file { "${::certbot::basedir}/${name}":
ensure => directory,
owner => 'root',
group => "${::certbot::owner}"
mode => '0750',
require => Package["${::certbot::tool}"],
}
if $pre_hook != '' {
$real_pre_hook = "${pre_hook} && "
}
# Make sure nginx is restarted and request a certificate
exec { "certbot-${name}":
command => "${real_pre_hook}/usr/bin/certbot certonly --webroot -w /var/www/certbot/${name} -d ${name} -d www.${name} -m ${email} --rsa-key-size ${size} --agree-tos",
creates => "/etc/letsencrypt/archive/${name}",
require => File["${::certbot::basedir}/${name}"],
}
}
|