diff options
author | Silvio Rhatto <rhatto@riseup.net> | 2016-06-16 18:53:55 -0300 |
---|---|---|
committer | Silvio Rhatto <rhatto@riseup.net> | 2016-06-16 18:53:55 -0300 |
commit | d14b82a7cc11d9463d38d6656e0bc7084c34471f (patch) | |
tree | 2e8225b1d3753f7646517174710179602fb3f753 /manifests/certbot.pp | |
parent | 3580b0ee72b210365de78a024c3bf280839cb420 (diff) | |
download | puppet-nginx-d14b82a7cc11d9463d38d6656e0bc7084c34471f.tar.gz puppet-nginx-d14b82a7cc11d9463d38d6656e0bc7084c34471f.tar.bz2 |
Adds initial Let's Encrypt support via certbot
Diffstat (limited to 'manifests/certbot.pp')
-rw-r--r-- | manifests/certbot.pp | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/manifests/certbot.pp b/manifests/certbot.pp new file mode 100644 index 0000000..e024b32 --- /dev/null +++ b/manifests/certbot.pp @@ -0,0 +1,19 @@ +define nginx::certbot( + $aliases = '' + $ensure = 'present', + $email = hiera('nginx::certbot::email'), + $size = hiera('nginx::certbot::size', '4096'), +){ + # Certbot support + file { "/var/www/certbot/${name}": + ensure => $ensure, + owner => 'root', + group => 'www-data', + mode => '0750', + require => Package['certbot'], + } + + exec { "certbot-${name}": + command => "/usr/bin/certbot certonly --webroot -w /var/www/certbot/${name} -d ${name} -m ${email} --rsa-key-size ${size} --agree-tos", + } +} |