fix ssl

2 files changed, 9 insertions, 0 deletions

diff --git a/roles/phoneof/tasks/main.yml b/roles/phoneof/tasks/main.yml
index 1ae43b8..dcd4720 100644
--- a/roles/phoneof/tasks/main.yml
+++ b/roles/phoneof/tasks/main.yml
@@ -1,4 +1,11 @@
 ---
+- name: Download internal cert
+  ansible.builtin.get_url:
+    url: https://ca.internal.simponic.xyz/roots.pem
+    validate_certs: false
+    dest: /etc/roots.pem
+    checksum: sha256:12a1d52af6f4073c339946e8c67bdd48fa85590480385fcce7f16b6b60d40831
+
 - name: ensure phoneof docker/compose exist
   file:
     path: /etc/docker/compose/phoneof
diff --git a/roles/phoneof/templates/docker-compose.yml.j2 b/roles/phoneof/templates/docker-compose.yml.j2
index 3acf768..58551ae 100644
--- a/roles/phoneof/templates/docker-compose.yml.j2
+++ b/roles/phoneof/templates/docker-compose.yml.j2
@@ -14,8 +14,10 @@ services:
       - TO_PHONE_NUMBER={{ to_phone_number }}
       - HTTPSMS_API_TOKEN={{ httpsms_api_token }}
       - HTTPSMS_SIGNING_KEY={{ httpsms_signing_key }}
+      - SSL_CERT_DIR=/etc/ssl/
     volumes:
       - ./db:/app/db
+      - /etc/roots.pem:/etc/ssl/roots.pem
     dns:
       - {{ nameserver_ip }}
     ports: