diff options
author | Silvio Rhatto <rhatto@riseup.net> | 2016-06-16 18:53:55 -0300 |
---|---|---|
committer | Silvio Rhatto <rhatto@riseup.net> | 2016-06-16 18:53:55 -0300 |
commit | d14b82a7cc11d9463d38d6656e0bc7084c34471f (patch) | |
tree | 2e8225b1d3753f7646517174710179602fb3f753 /manifests/ssl.pp | |
parent | 3580b0ee72b210365de78a024c3bf280839cb420 (diff) | |
download | puppet-nginx-d14b82a7cc11d9463d38d6656e0bc7084c34471f.tar.gz puppet-nginx-d14b82a7cc11d9463d38d6656e0bc7084c34471f.tar.bz2 |
Adds initial Let's Encrypt support via certbot
Diffstat (limited to 'manifests/ssl.pp')
-rw-r--r-- | manifests/ssl.pp | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/manifests/ssl.pp b/manifests/ssl.pp index 6e4af14..8592546 100644 --- a/manifests/ssl.pp +++ b/manifests/ssl.pp @@ -16,4 +16,18 @@ class nginx::ssl( 'ssl_prefer_server_ciphers': value => 'ssl_prefer_server_ciphers on;'; 'ssl_dhparam': value => 'ssl_dhparam /etc/ssl/dhparams/dhparams_2048.pem;'; } + + # Certbot support + file { '/var/www/certbot': + ensure => directory, + owner => 'root', + group => 'www-data', + mode => '0750', + require => Package['nginx'], + } + + package { 'certbot': + ensure => present, + require => File['/var/www/certbot'], + } } |