From e984ec2ccfd542ef02206d498d30387a81e369d4 Mon Sep 17 00:00:00 2001
From: Christian Pointner <equinox@spreadspace.org>
Date: Mon, 8 Oct 2018 17:46:04 +0200
Subject: fixed acmetool self-signed cert handling

---
 roles/acmetool/base/tasks/main.yml | 31 +++----------------------------
 1 file changed, 3 insertions(+), 28 deletions(-)

(limited to 'roles/acmetool/base/tasks/main.yml')

diff --git a/roles/acmetool/base/tasks/main.yml b/roles/acmetool/base/tasks/main.yml
index 220da2e7..a609b64e 100644
--- a/roles/acmetool/base/tasks/main.yml
+++ b/roles/acmetool/base/tasks/main.yml
@@ -8,7 +8,7 @@
   apt:
     name:
       - acmetool
-      - ssl-cert
+      - python-openssl
     state: present
 
 - name: create initial directory structure
@@ -35,33 +35,8 @@
   args:
     creates: /var/lib/acme/conf/target
 
-- name: create directory for snakeoil cert
-  file:
-    path: /etc/ssl/acmetool-snakeoil
-    state: directory
-
-- name: create symlinks to snakeoil cert/key
-  file:
-    src: "/etc/ssl/{{ item.src }}"
-    dest: "/etc/ssl/acmetool-snakeoil/{{ item.dest }}"
-    state: link
-  with_items:
-    - src: certs/ssl-cert-snakeoil.pem
-      dest: cert
-    - src: certs/ssl-cert-snakeoil.pem
-      dest: fullchain
-    - src: private/ssl-cert-snakeoil.key
-      dest: privkey
-
-- name: create additional files for snakeoil cert
-  copy:
-    content: "{{ item.content }}"
-    dest: "/etc/ssl/acmetool-snakeoil/{{ item.dest }}"
-  with_items:
-    - content: ""
-      dest: chain
-    - content: "http://example.com/nonexistent\n"
-      dest: url
+- name: generate selfsigned interim certificate
+  include_tasks: selfsigned.yml
 
 - name: install service reload configuration
   template:
-- 
cgit v1.2.3