bastian/deploy_home
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

corrected letsencrypt permissions for podman, post-hook

Browse Source
This commit is contained in:
Bastian de Byl
2022-07-18 23:34:21 -04:00
parent fb1c0c7264
commit c1b6fe4f26
3 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ansible/roles/podman/tasks/configuration-nginx.yml
View File

@@ -5,7 +5,7 @@
path: /srv/http/letsencrypt path: /srv/http/letsencrypt
owner: "{{ podman_user }}" owner: "{{ podman_user }}"
group: "{{ podman_user }}" group: "{{ podman_user }}"
mode: 0644 mode: 0755
state: directory state: directory
tags: tags:
- ssl - ssl

1
ansible/roles/podman/tasks/container-pihole.yml
View File

@@ -11,6 +11,7 @@
loop: loop:
- "{{ pihole_path }}/config" - "{{ pihole_path }}/config"
- "{{ pihole_path }}/dnsmasq" - "{{ pihole_path }}/dnsmasq"
- "/srv/http/letsencrypt"
tags: pihole tags: pihole
- name: flush handlers - name: flush handlers

2
ansible/roles/ssl/tasks/cron.yml
View File

@@ -5,5 +5,5 @@
name: certbot_renew name: certbot_renew
special_time: weekly special_time: weekly
job: >- job: >-
certbot renew --post-hook 'systemctl restart nginx' certbot renew --post-hook "su -s /bin/sh podman -c 'podman restart nginx'"
tags: cron tags: cron