| Zack Williams | 845c7ca | 2020-07-06 17:19:27 -0700 | [diff] [blame^] | 1 | --- |
| 2 | # acme defaults/main.yml |
| 3 | # |
| 4 | # SPDX-FileCopyrightText: © 2020 Open Networking Foundation <support@opennetworking.org> |
| 5 | # SPDX-License-Identifier: Apache-2.0 |
| 6 | |
| 7 | acmesh_version: "2.8.6" |
| 8 | |
| 9 | # base directory. subpaths "home" and "dist" will be creatd in this directory |
| 10 | acmesh_base_dir: "/etc/acme" |
| 11 | |
| 12 | # logging directory |
| 13 | acmesh_log_dir: "/var/log/acme" |
| 14 | |
| 15 | # directory where certificates are placed. This is shared with other roles like nginx |
| 16 | certificate_dir: "/etc/acme/certs" |
| 17 | |
| 18 | # local user account created for acme |
| 19 | acmesh_username: "acme" |
| 20 | acmesh_groupname: "acme" |
| 21 | acmesh_comment: "acme.sh certificate updater" |
| 22 | |
| 23 | # webroot directory for acme challenges (also used in webserver roles) |
| 24 | acme_challenge_dir: "/etc/acme/challenges" |
| 25 | |
| 26 | # name of webserver group, for the acme_challenge_dir |
| 27 | webserver_groupname: "www-data" |
| 28 | |
| 29 | # name of the webserver service to restart on certificate change |
| 30 | webserver_service: "nginx" |
| 31 | |
| 32 | # configuration used with ACME protocol (LetsEncrypt) |
| 33 | acmesh_email: "support@opennetworking.org" |
| 34 | |
| 35 | # environment vars to set when using DNS provider (usually API keys) |
| 36 | acmesh_dns_env_vars: [] |
| 37 | |
| 38 | # how long to sleep for DNS provider to add entries |
| 39 | acmesh_dns_sleep: 30 |
| 40 | |
| 41 | # List of certs to generate, see README.md for configuration |
| 42 | acme_certs: [] |