jpp/ansible-roles
1
0
Fork 0
mirror of https://git.lapiole.org/dani/ansible-roles.git synced 2025-07-26 15:55:56 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update to 2022-03-18 15:00

Browse Source
This commit is contained in:
Daniel Berteaud
2022-03-18 15:00:07 +01:00
parent 74ba55223d
commit 897e3c74b4
8 changed files with 50 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
roles/postgresql_server/templates/dehydrated_hook.j2 Normal file
View File

@@ -0,0 +1,20 @@
#!/bin/sh
{% if pg_letsencrypt_cert is defined %}
if [ $1 == "{{ pg_letsencrypt_cert }}" ]; then
cp /var/lib/dehydrated/certificates/certs/{{ pg_letsencrypt_cert }}/fullchain.pem /var/lib/pgsql/ssl/server.crt
cp /var/lib/dehydrated/certificates/certs/{{ pg_letsencrypt_cert }}/privkey.pem /var/lib/pgsql/ssl/server.key
chown root:postgres /var/lib/pgsql/ssl/server.key
chown root:root /var/lib/pgsql/ssl/server.crt
chmod 640 /var/lib/pgsql/ssl/server.key
chmod 644 /var/lib/pgsql/ssl/server.crt
systemctl reload postgresql{{ (pg_version != 'default') | ternary('-' + pg_version | string,'') }}
fi
{% else %}
# No Let's Encrypt cert configured, nothing to do
exit 0
{% endif %}