From d14b82a7cc11d9463d38d6656e0bc7084c34471f Mon Sep 17 00:00:00 2001
From: Silvio Rhatto <rhatto@riseup.net>
Date: Thu, 16 Jun 2016 18:53:55 -0300
Subject: Adds initial Let's Encrypt support via certbot

---
 manifests/ssl.pp | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

(limited to 'manifests/ssl.pp')

diff --git a/manifests/ssl.pp b/manifests/ssl.pp
index 6e4af14..8592546 100644
--- a/manifests/ssl.pp
+++ b/manifests/ssl.pp
@@ -16,4 +16,18 @@ class nginx::ssl(
     'ssl_prefer_server_ciphers': value => 'ssl_prefer_server_ciphers on;';
     'ssl_dhparam':               value => 'ssl_dhparam /etc/ssl/dhparams/dhparams_2048.pem;';
   }
+
+  # Certbot support
+  file { '/var/www/certbot':
+    ensure  => directory,
+    owner   => 'root',
+    group   => 'www-data',
+    mode    => '0750',
+    require => Package['nginx'],
+  }
+
+  package { 'certbot':
+    ensure => present,
+    require => File['/var/www/certbot'],
+  }
 }
-- 
cgit v1.2.3