sunet-cdn/cdn-ops
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Apply IP-specific certbot command to cache instead

Browse source
This commit is contained in:
Patrik Lundin 2024-11-04 09:31:50 +01:00
parent 6f2dd2df0f
commit e5a23593bf
Signed by: patlu
GPG key ID: A0A812BA2249F294
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
global/overlay/etc/puppet/modules/cdn/manifests/cache.pp
View file

@ -138,7 +138,7 @@ class cdn::cache(
$environment = $dash_split[2]
# Get client cert for connecting to MQTT bus
exec { "certbot certonly -n --email patlu@sunet.se --no-eff-email --agree-tos --standalone -d ${my_fqdn} --server ${acme_url[$environment]}":
exec { "certbot certonly -n --email patlu@sunet.se --no-eff-email --agree-tos --standalone -d ${my_fqdn} --server ${acme_url[$environment]} --http-01-address ${facts['networking']['ip']}":
creates => "/etc/letsencrypt/live/${my_fqdn}/fullchain.pem"
}