opendev
/
system-config
Code Issues Proposed changes
system-config/playbooks/roles/letsencrypt-install-txt-record
History
Ian Wienand 984580f96d Remove some unnecessary debug: statements 
With the roles now in production, these debug statements are more
noise than help.

Change-Id: I3da4ac0ae1f8ea8b64ab8d6ba75ccb110787db2e
 		2021-05-07 11:11:56 +10:00
..
tasks Remove some unnecessary debug: statements 2021-05-07 11:11:56 +10:00
templates letsencrypt : use date call for serial number 2019-05-22 16:41:51 +10:00
README.rst letsencrypt support 2019-04-02 15:31:41 +11:00

README.rst

Install authentication records for letsencrypt

Install TXT records to the acme.opendev.org domain. This role runs only the adns server, and assumes ownership of the /var/lib/bind/zones/acme.opendev.org/zone.db file. After installation the nameserver is refreshed.

After this, letsencrypt-create-certs can run on each host to provision the certificates.

Role Variables

A global dictionary of TXT records to be installed. This is generated in a prior step on each host by the letsencrypt-request-certs role.