Skip to content

Commit

Permalink
Merge pull request #1 from justereseau/feat/new_cf_token
Browse files Browse the repository at this point in the history 
Make it work with new application token
  • Loading branch information
@lucasmaurice
lucasmaurice authored Aug 17, 2020
2 parents 96d4d20 + f947a48 commit 67acb4b
Show file tree
Hide file tree
Showing 3 changed files with 32 additions and 15 deletions.
12 changes: 2 additions & 10 deletions .travis.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,18 +13,9 @@ env:
- MOLECULE_DISTRO: debian9
- MOLECULE_DISTRO: debian10

before_install:
- sudo apt-get update
- sudo apt-get upgrade -y
- sudo apt-get purge docker-ce -y
- sudo apt-get autoremove -y
- curl -fsSL https://raw.githubusercontent.com/darkwizard242/devopsubuntu1804/v1.0/packer-build/mods/10-docker.sh | sudo bash -s -- install
- sudo usermod -aG docker $USER
- curl -fsSL https://raw.githubusercontent.com/darkwizard242/devopsubuntu1804/v1.0/packer-build/mods/10-docker.sh | sudo bash -s -- restart

install:
# Install test dependencies.
- pip install molecule docker testinfra ansible-lint flake8 yamllint
- pip install molecule docker==4.2.2 testinfra ansible-lint flake8 yamllint

before_script:
# Use actual Ansible Galaxy role name for the project directory.
Expand All @@ -33,6 +24,7 @@ before_script:
- cd $ROLE_NAME

script:
- docker --version
- molecule --version
- ansible --version
- molecule test
Expand Down
7 changes: 4 additions & 3 deletions defaults/main.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,7 @@ acme_sh_domains:
debug: false
reload_command: service nginx restart

acme_cloudflare_token: xxxx
acme_cloudflare_account_id: xxxx
acme_cloudflare_zone_id: xxxx
# acme_cloudflare_token: xxxx
# acme_cloudflare_account_id: xxxx
# acme_cloudflare_zone_id: xxxx
# acme_cloudflare_email: xxxx
28 changes: 26 additions & 2 deletions tasks/main.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -39,7 +39,7 @@
- item.remove | default(false)
loop: "{{ acme_sh_domains }}"

- name: Issue acme.sh certificate(s)
- name: Issue acme.sh certificate(s) (old token)
command: >-
./acme.sh --issue -d {{ item.domain }} --dns dns_cf
{{ "--force" if item.force_issue | default(false) or item.force_renew | default(false) else "" }}
Expand All @@ -51,7 +51,31 @@
- "CF_Token": "{{ acme_cloudflare_token }}"
- "CF_Account_ID": "{{ acme_cloudflare_account_id }}"
- "CF_Zone_ID": "{{ acme_cloudflare_zone_id }}"
when: not item.remove | default(false)
when:
- not item.remove | default(false)
- acme_cloudflare_token is defined
- acme_cloudflare_account_id is defined
- acme_cloudflare_zone_id is defined
loop: "{{ acme_sh_domains }}"
register: issue_result
changed_when: issue_result.rc == 0 and "Cert success" in issue_result.stdout and not item.force_renew | default(false)
failed_when: issue_result.rc != 0 and "Domains not changed" not in issue_result.stdout

- name: Issue acme.sh certificate(s) (token)
command: >-
./acme.sh --issue -d {{ item.domain }} --dns dns_cf
{{ "--force" if item.force_issue | default(false) or item.force_renew | default(false) else "" }}
{{ "--staging" if item.staging | default(false) else "" }}
{{ "--debug" if item.debug | default(false) else "" }}
args:
chdir: "{{ acme_sh_git_clone_dest }}"
environment:
- "CF_Key": "{{ acme_cloudflare_token }}"
- "CF_Email": "{{ acme_cloudflare_email }}"
when:
- not item.remove | default(false)
- acme_cloudflare_token is defined
- acme_cloudflare_email is defined
loop: "{{ acme_sh_domains }}"
register: issue_result
changed_when: issue_result.rc == 0 and "Cert success" in issue_result.stdout and not item.force_renew | default(false)
Expand Down

0 comments on commit 67acb4b

Please sign in to comment.