Gitiles
Code Review Sign In
gerrit.opencord.org / ansible / role / acme / 845c7cac26f5a22d8f9a352b8590ec6121dbca11^! / . / defaults / main.yml
commit845c7cac26f5a22d8f9a352b8590ec6121dbca11[log] [tgz]
authorZack Williams <zdw@opennetworking.org>Mon Jul 06 17:19:27 2020 -0700
committerZack Williams <zdw@opennetworking.org>Fri Oct 02 18:55:16 2020 -0700
tree07421072ddf2a791a9782f64f431c632a95fb04c
INF-113 acme.sh LetsEncrypt certificate role

initial commit

Change-Id: I36f733306b439a0cd92bded0726dd53a0a4b4084

diff --git a/defaults/main.yml b/defaults/main.yml
new file mode 100644
index 0000000..561cd31
--- /dev/null
+++ b/defaults/main.yml

@@ -0,0 +1,42 @@
+---
+# acme defaults/main.yml
+#
+# SPDX-FileCopyrightText: © 2020 Open Networking Foundation <support@opennetworking.org>
+# SPDX-License-Identifier: Apache-2.0
+
+acmesh_version: "2.8.6"
+
+# base directory. subpaths "home" and "dist" will be creatd in this directory
+acmesh_base_dir: "/etc/acme"
+
+# logging directory
+acmesh_log_dir: "/var/log/acme"
+
+# directory where certificates are placed.  This is shared with other roles like nginx
+certificate_dir: "/etc/acme/certs"
+
+# local user account created for acme
+acmesh_username: "acme"
+acmesh_groupname: "acme"
+acmesh_comment: "acme.sh certificate updater"
+
+# webroot directory for acme challenges (also used in webserver roles)
+acme_challenge_dir: "/etc/acme/challenges"
+
+# name of webserver group, for the acme_challenge_dir
+webserver_groupname: "www-data"
+
+# name of the webserver service to restart on certificate change
+webserver_service: "nginx"
+
+# configuration used with ACME protocol (LetsEncrypt)
+acmesh_email: "support@opennetworking.org"
+
+# environment vars to set when using DNS provider (usually API keys)
+acmesh_dns_env_vars: []
+
+# how long to sleep for DNS provider to add entries
+acmesh_dns_sleep: 30
+
+# List of certs to generate, see README.md for configuration
+acme_certs: []