nikdoof/ansible-certbot
1
0
Fork 0
mirror of https://github.com/nikdoof/ansible-certbot.git synced 2025-12-11 14:42:16 +00:00
Code Issues Packages Projects Releases Wiki Activity

Only provide keytype args if specified

Browse Source
This commit is contained in:
Andrew Williams
2025-06-10 16:03:50 +01:00
parent 22be8d5133
commit 3207ed846d
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
tasks/cert.yaml
View File

@@ -15,6 +15,6 @@
cert_sans: "{{ ['DNS:'] | product(item.sans | default([item.hostname])) | map('join') | list }}"
- name: Certbot - Request a certificate # noqa no-changed-when ignore-errors
ansible.builtin.command: "certbot certonly -n --expand --agree-tos {{ certbot_plugin_arguments[item.plugin | default('default')] }} -d '{{ item.hostname }}' {% for san in item.sans | default([]) %} -d '{{ san }}' {% endfor %} -m {{ certbot_certs_email }} --key-type {{ item.key_type | default('ecdsa')}}" # noqa no-change-when
ansible.builtin.command: "certbot certonly -n --expand --agree-tos {{ certbot_plugin_arguments[item.plugin | default('default')] }} -d '{{ item.hostname }}' {% for san in item.sans | default([]) %} -d '{{ san }}' {% endfor %} -m {{ certbot_certs_email }}{% if item.key_type %} --key-type {{ item.key_type }}{% endif %}" # noqa no-change-when
ignore_errors: true
when: not cert_stat.stat.exists or cert_sans | difference(cert_info.subject_alt_name) | list | length > 0