2c42e57510
Adding the information about which host we were checking for certcheck did help in debugging. It pointed out that a specific host was at fault (nb02 in this case though it could change over time) and further investigation of this host showed acme.sh was not running there at all due to earlier failures. Rather than the playbook ending at that point it continued to run until building the certcheck list and then had a fatal error leading to the confusion. Add a breadcrumb comment to the Ansible role to help point this behavior out in the future. Change-Id: Ib607665d75eb666d19c8508346eb217783b98eb5 |
||
|---|---|---|
| .. | ||
| defaults | ||
| tasks | ||
| templates | ||
| README.rst | ||
Generate SSL check list
This role automatically generates a list of domains for the certificate validation checks. This ensures our certificates are valid and are being renewed as expected.
This role must run after letsencrypt-request-certs role,
as that builds the letsencrypt_certcheck_domains variable
for each host and certificate. It must also run on a host that has
already run the install-certcheck role.
Role Variables