Commit 4c294988 authored by Jocelyn Delalande's avatar Jocelyn Delalande

letsencrypt: Restart nginx after cert renewal

parent 5a142454
# ansible-letsencrypt # ansible-letsencrypt
*see also: nginx*
An ansible role to generate TLS certificates and get them signed by Let's Encrypt. An ansible role to generate TLS certificates and get them signed by Let's Encrypt.
Currently attempts first to use the `webroot` authenticator, then if that fails to create certificates, Currently attempts first to use the `webroot` authenticator, then if that fails to create certificates,
...@@ -8,6 +11,8 @@ the web server has been configured or even installed. ...@@ -8,6 +11,8 @@ the web server has been configured or even installed.
I've tested this on a couple of Debian Jessie boxes with nginx, if you test it on other things please let me know I've tested this on a couple of Debian Jessie boxes with nginx, if you test it on other things please let me know
the results (positive or otherwise) so I can document them here/fix the issue. the results (positive or otherwise) so I can document them here/fix the issue.
It restarts **nginx** https after renewal.
# Usage # Usage
First, read Let's Encrypt's TOS and EULA. Only proceed if you agree to them. First, read Let's Encrypt's TOS and EULA. Only proceed if you agree to them.
......
...@@ -53,4 +53,4 @@ ...@@ -53,4 +53,4 @@
apt: name=cron apt: name=cron
- name: Install renewal cron - name: Install renewal cron
cron: name="Let's Encrypt Renewal" day="{{ letsencrypt_renewal_frequency.day }}" hour="{{ letsencrypt_renewal_frequency.hour }}" minute="{{ letsencrypt_renewal_frequency.minute }}" job="{{ letsencrypt_venv }}/bin/letsencrypt renew > /dev/null" cron: name="Let's Encrypt Renewal" day="{{ letsencrypt_renewal_frequency.day }}" hour="{{ letsencrypt_renewal_frequency.hour }}" minute="{{ letsencrypt_renewal_frequency.minute }}" job="{{ letsencrypt_venv }}/bin/letsencrypt renew --renew-hook '/etc/init.d/nginx reload'> /dev/null"
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment