hatecomputers.club stuff

1 files changed, 31 insertions, 2 deletions

diff --git a/roles/webservers/tasks/main.yml b/roles/webservers/tasks/main.yml
index fccd34e..1eb53b0 100644
--- a/roles/webservers/tasks/main.yml
+++ b/roles/webservers/tasks/main.yml
@@ -62,14 +62,43 @@
   loop: "{{ nginx_conf_files.files }}"
   register: extracted_domains
 
-- name: request letsencrypt certificate
+# simponic.xyz
+- name: request simponic letsencrypt certificates
   shell: >
     letsencrypt certonly -n --webroot -w /var/www/letsencrypt -m {{ letsencrypt_email }} \
       --agree-tos -d {{ item.stdout }}
   args:
     creates: "/etc/letsencrypt/live/{{ item.stdout }}"
   loop: "{{ extracted_domains.results }}"
-  when: item.stdout != ""
+  when: '"simponic.xyz" in item.stdout'
+
+# hatecomputers.club
+- name: build plugin template
+  template:
+    src: ../templates/plugin.sh.j2
+    dest: /etc/letsencrypt/hcdns.sh
+    mode: 0744
+    owner: root
+    group: root
+
+- name: clone hcdns auth repo
+  ansible.builtin.git:
+    repo: https://git.hatecomputers.club/simponic/hc-cert-dns
+    dest: /root/hc-cert-dns
+
+- name: request hatecomputers letsencrypt certificate
+  shell: >
+    letsencrypt certonly -n \
+      --manual --manual-auth-hook /etc/letsencrypt/hcdns.sh \
+      --preferred-challenges dns \
+      -d {{ item.stdout }} \
+      --email {{ letsencrypt_email }} \
+      --agree-tos \
+      --no-eff-email
+  args:
+    creates: "/etc/letsencrypt/live/{{ item.stdout }}"
+  loop: "{{ extracted_domains.results }}"
+  when: '"hatecomputers.club" in item.stdout'
 
 - name: copy https nginx configuration for each domain
   copy: