initial commit

templates/acme.j2

@@ -0,0 +1,32 @@
+# {{ ansible_managed }}
+
+{% for authority in acme_authorities %}
+authority {{authority.name}} {
+  api url "{{authority.api_url}}"
+  account key "{{authority.key}}"
+}
+{% endfor %}
+{% for domain in acme_hosts %}
+
+domain {{domain.domain}} {
+{% if domain.alt_names is defined %}
+  alternative names { {{domain.alt_names | join(' ')}} }
+{% endif %}
+  domain key "{{domain.key}}"
+{% if domain.cert is defined %}
+  domain certificate "{{domain.cert}}"
+{% endif %}
+{% if domain.chain_cert is defined %}
+  domain chain certificate "{{domain.chain_cert}}"
+{% endif %}
+{% if domain.full_chain_cert is defined %}
+  domain full chain certificate "{{domain.full_chain_cert}}"
+{% endif %}
+{% if domain.authority is defined %}
+  sign with {{domain.authority}}
+{% endif %}
+{% if domain.challengedir is defined%}
+  challengedir "{{domain.challengedir}}"
+{% endif %}
+}
+{% endfor %}

templates/renew_certs.j2

@@ -0,0 +1,27 @@
+#!/bin/bash
+
+# {{ ansible_managed }}
+
+{% for domain in acme_hosts %}
+
+# domain {{domain.domain}}
+/usr/local/bin/acme-client {{domain.domain}}
+RETURN=$?
+if [ $RETURN -eq 0 ]
+then
+{% if domain.reload_command is defined %}
+	# reload command
+	{{domain.reload_command}}
+{% else %}
+	# no reload command defined
+	:
+{% endif %}
+elif [ $RETURN -eq 2 ]
+then
+	# clean
+	:
+else
+	# error
+	:
+fi
+{% endfor %}