From 4e399580935a570cf7000e15856c3c6c023c7de3 Mon Sep 17 00:00:00 2001
From: "Antonio J. Delgado" <ad@susurrando.com>
Date: Sun, 29 Jan 2023 09:59:31 +0200
Subject: [PATCH] sync live and archive certs of fqdn

---
 tasks/configure_certificates.yml | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/tasks/configure_certificates.yml b/tasks/configure_certificates.yml
index f10276f..d90ac00 100644
--- a/tasks/configure_certificates.yml
+++ b/tasks/configure_certificates.yml
@@ -76,6 +76,10 @@
     key: "{{ item }}"
   loop: "{{ lookup('file', '/tmp/pubkeys') | split('\n') }}"
 
-- name: Synchronize certificates
-  shell: "rsync -ar -e 'ssh -p 7227 -o StrictHostKeyChecking=no' {{ mail_server_fqdn_ip }}:/etc/letsencrypt /etc/"
-  when: mail_server_fqdn_ip != node_external_ip
\ No newline at end of file
+- name: Synchronize live certificates
+  shell: "rsync -ar -e 'ssh -p 7227 -o StrictHostKeyChecking=no' {{ mail_server_fqdn_ip }}:/etc/letsencrypt/live/{{ mail_server_fqdn }} /etc/letsencrypt/live/"
+  when: mail_server_fqdn_ip != node_external_ip
+
+- name: Synchronize archive certificates
+  shell: "rsync -ar -e 'ssh -p 7227 -o StrictHostKeyChecking=no' {{ mail_server_fqdn_ip }}:/etc/letsencrypt/archive/{{ mail_server_fqdn }} /etc/letsencrypt/archive/"
+  when: mail_server_fqdn_ip != node_external_ip