From 5b08c3fb96e54e0ae8ae1d650658b27dcdfd78de Mon Sep 17 00:00:00 2001
From: Christian Pointner <equinox@spreadspace.org>
Date: Tue, 8 Aug 2023 00:42:56 +0200
Subject: make acmetool cert role more generic (WIP - needs more testing)

---
 roles/apps/collabora/code/templates/nginx-vhost.conf.j2 | 4 ++--
 roles/apps/coturn/templates/nginx-vhost.conf.j2         | 4 ++--
 roles/apps/etherpad-lite/templates/nginx-vhost.conf.j2  | 4 ++--
 3 files changed, 6 insertions(+), 6 deletions(-)

(limited to 'roles/apps')

diff --git a/roles/apps/collabora/code/templates/nginx-vhost.conf.j2 b/roles/apps/collabora/code/templates/nginx-vhost.conf.j2
index d56d77a0..04358976 100644
--- a/roles/apps/collabora/code/templates/nginx-vhost.conf.j2
+++ b/roles/apps/collabora/code/templates/nginx-vhost.conf.j2
@@ -17,8 +17,8 @@ server {
 
     include snippets/acmetool.conf;
     include snippets/tls.conf;
-    ssl_certificate     /var/lib/acme/live/{{ item.value.hostname }}/fullchain;
-    ssl_certificate_key /var/lib/acme/live/{{ item.value.hostname }}/privkey;
+    ssl_certificate     {{ x509_certificate_path_fullchain }};
+    ssl_certificate_key {{ x509_certificate_path_key }};
     include snippets/hsts.conf;
 
 
diff --git a/roles/apps/coturn/templates/nginx-vhost.conf.j2 b/roles/apps/coturn/templates/nginx-vhost.conf.j2
index 0639fbe1..577c33b4 100644
--- a/roles/apps/coturn/templates/nginx-vhost.conf.j2
+++ b/roles/apps/coturn/templates/nginx-vhost.conf.j2
@@ -17,8 +17,8 @@ server {
 
     include snippets/acmetool.conf;
     include snippets/tls.conf;
-    ssl_certificate     /var/lib/acme/live/{{ coturn_hostnames[0] }}/fullchain;
-    ssl_certificate_key /var/lib/acme/live/{{ coturn_hostnames[0] }}/privkey;
+    ssl_certificate     {{ x509_certificate_path_fullchain }};
+    ssl_certificate_key {{ x509_certificate_path_key }};
     include snippets/hsts.conf;
 
     location / {
diff --git a/roles/apps/etherpad-lite/templates/nginx-vhost.conf.j2 b/roles/apps/etherpad-lite/templates/nginx-vhost.conf.j2
index b59701fc..0ac9d0f0 100644
--- a/roles/apps/etherpad-lite/templates/nginx-vhost.conf.j2
+++ b/roles/apps/etherpad-lite/templates/nginx-vhost.conf.j2
@@ -17,8 +17,8 @@ server {
 
     include snippets/acmetool.conf;
     include snippets/tls.conf;
-    ssl_certificate     /var/lib/acme/live/{{ item.value.hostnames[0] }}/fullchain;
-    ssl_certificate_key /var/lib/acme/live/{{ item.value.hostnames[0] }}/privkey;
+    ssl_certificate     {{ x509_certificate_path_fullchain }};
+    ssl_certificate_key {{ x509_certificate_path_key }};
     include snippets/hsts.conf;
 
     location / {
-- 
cgit v1.2.3