Adds initial Let's Encrypt support via certbot

author: Silvio Rhatto <rhatto@riseup.net> 2016-06-16 18:53:55 -0300
committer: Silvio Rhatto <rhatto@riseup.net> 2016-06-16 18:53:55 -0300
commit: d14b82a7cc11d9463d38d6656e0bc7084c34471f (patch)
tree: 2e8225b1d3753f7646517174710179602fb3f753 /manifests/ssl.pp
parent: 3580b0ee72b210365de78a024c3bf280839cb420 (diff)
download: puppet-nginx-d14b82a7cc11d9463d38d6656e0bc7084c34471f.tar.gz
puppet-nginx-d14b82a7cc11d9463d38d6656e0bc7084c34471f.tar.bz2
1 files changed, 14 insertions, 0 deletions
diff --git a/manifests/ssl.pp b/manifests/ssl.pp
index 6e4af14..8592546 100644
--- a/manifests/ssl.pp
+++ b/manifests/ssl.pp
@@ -16,4 +16,18 @@ class nginx::ssl(
     'ssl_prefer_server_ciphers': value => 'ssl_prefer_server_ciphers on;';
     'ssl_dhparam':               value => 'ssl_dhparam /etc/ssl/dhparams/dhparams_2048.pem;';
   }
+
+  # Certbot support
+  file { '/var/www/certbot':
+    ensure  => directory,
+    owner   => 'root',
+    group   => 'www-data',
+    mode    => '0750',
+    require => Package['nginx'],
+  }
+
+  package { 'certbot':
+    ensure => present,
+    require => File['/var/www/certbot'],
+  }
 }
author	Silvio Rhatto <rhatto@riseup.net>	2016-06-16 18:53:55 -0300
committer	Silvio Rhatto <rhatto@riseup.net>	2016-06-16 18:53:55 -0300
commit	d14b82a7cc11d9463d38d6656e0bc7084c34471f (patch)
tree	2e8225b1d3753f7646517174710179602fb3f753 /manifests/ssl.pp
parent	3580b0ee72b210365de78a024c3bf280839cb420 (diff)
download	puppet-nginx-d14b82a7cc11d9463d38d6656e0bc7084c34471f.tar.gz puppet-nginx-d14b82a7cc11d9463d38d6656e0bc7084c34471f.tar.bz2