Remove key_type option

Add Route53 support
2025-12-13 07:32:15 +00:00 · 2025-06-24 15:48:12 +01:00 · 2025-06-24 15:48:02 +01:00
2 changed files with 3 additions and 1 deletions
--- a/defaults/main.yaml
+++ b/defaults/main.yaml
@@ -6,6 +6,7 @@ certbot_request_fqdn_cert: true
 certbot_plugin_arguments:
  digitalocean: --dns-digitalocean --dns-digitalocean-credentials /root/do_secrets.ini
  godaddy: --authenticator dns-godaddy --dns-godaddy-credentials /root/gd_secrets.ini
  route53: --dns-route53
  default: "--webroot -w /var/www/acme-challenge"
 certbot_packages:
@@ -13,6 +14,7 @@ certbot_packages:
 certbot_extension_packages:
  - python3-certbot-dns-digitalocean
  - python3-certbot-dns-route53
 certbot_extension_pypi_packages: []
--- a/tasks/cert.yaml
+++ b/tasks/cert.yaml
@@ -15,6 +15,6 @@
    cert_sans: "{{ ['DNS:'] | product(item.sans | default([item.hostname])) | map('join') | list }}"
 - name: Certbot - Request a certificate  # noqa no-changed-when ignore-errors
-  ansible.builtin.command: "certbot certonly -n --expand --agree-tos {{ certbot_plugin_arguments[item.plugin | default('default')] }} -d '{{ item.hostname }}' {% for san in item.sans | default([]) %} -d '{{ san }}' {% endfor %} -m {{ certbot_certs_email }}{% if item.key_type %} --key-type {{ item.key_type }}{% endif %}"  # noqa no-change-when
+  ansible.builtin.command: "certbot certonly -n --expand --agree-tos {{ certbot_plugin_arguments[item.plugin | default('default')] }} -d '{{ item.hostname }}' {% for san in item.sans | default([]) %} -d '{{ san }}' {% endfor %} -m {{ certbot_certs_email }}"  # noqa no-change-when
  ignore_errors: true
  when: not cert_stat.stat.exists or cert_sans | difference(cert_info.subject_alt_name) | list | length > 0
Author	SHA1	Message	Date
Andrew Williams	44174f00d9	Remove key_type option	2025-06-24 15:48:12 +01:00
Andrew Williams	f47c40b9c0	Add Route53 support	2025-06-24 15:48:02 +01:00