sync live and archive certs of fqdn

2023-01-29 09:59:31 +02:00 · 2023-01-29 09:59:31 +02:00 · 4e39958093
commit 4e39958093
parent fcbc17286a
1 changed files with 7 additions and 3 deletions
--- a/tasks/configure_certificates.yml
+++ b/tasks/configure_certificates.yml
@ -76,6 +76,10 @@
    key: "{{ item }}"
  loop: "{{ lookup('file', '/tmp/pubkeys') | split('\n') }}"

- name: Synchronize certificates
-  shell: "rsync -ar -e 'ssh -p 7227 -o StrictHostKeyChecking=no' {{ mail_server_fqdn_ip }}:/etc/letsencrypt /etc/"
-  when: mail_server_fqdn_ip != node_external_ip
+- name: Synchronize live certificates
+  shell: "rsync -ar -e 'ssh -p 7227 -o StrictHostKeyChecking=no' {{ mail_server_fqdn_ip }}:/etc/letsencrypt/live/{{ mail_server_fqdn }} /etc/letsencrypt/live/"
+  when: mail_server_fqdn_ip != node_external_ip
+
+- name: Synchronize archive certificates
+  shell: "rsync -ar -e 'ssh -p 7227 -o StrictHostKeyChecking=no' {{ mail_server_fqdn_ip }}:/etc/letsencrypt/archive/{{ mail_server_fqdn }} /etc/letsencrypt/archive/"
+  when: mail_server_fqdn_ip != node_external_ip