feat: certbot reorg

- moved certbot into its own module
- added fact to list available certificates
- created systemd timer to rsync data to $data_dir/pub
- ensure the $data_dir/pub exists
- manage selinux for nginx
This commit is contained in:
2024-07-08 20:22:44 +10:00
parent 30ec8c1bb1
commit bd5164fed3
21 changed files with 232 additions and 80 deletions
+1 -1
View File
@@ -1,3 +1,3 @@
---
timezone::timezone: 'Australia/Sydney'
profiles::pki::letsencrypt: ausyd1nxvm1021.main.unkin.net
certbot::client::webserver: ausyd1nxvm1021.main.unkin.net
@@ -201,3 +201,14 @@ profiles::pki::vault::alt_names:
profiles::haproxy::dns::cnames:
- au-syd1-pve.main.unkin.net
- au-syd1-pve-api.main.unkin.net
# letsencrypt certificates
certbot::client::domains:
- au-syd1-pve.main.unkin.net
- au-syd1-pve-api.main.unkin.net
- sonarr.main.unkin.net
- radarr.main.unkin.net
- lidarr.main.unkin.net
- readarr.main.unkin.net
- prowlarr.main.unkin.net
- fafflix.unkin.net