Giters

alexmanno / ansible-role-certbot-cloudflare

Ansible Role for setting up Wildcard certs with certbot and Cloudflare dns plugin

Home Page:https://galaxy.ansible.com/michaelpporter/certbot_cloudflare

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Certbot Cloudfare

Use Cloudflare DNS for wildcard certbot generation

Requirements

  • Cloudflare DNS setup
  • Cloudflare API Key
  • Wildcard domian setup (for wildcard certs) [*.domain.com or *.subdomain.domain.com]

Role Variables

certbot_cloudflare_email: "cloudflare@example.com"

Your Cloudflare email address

certbot_cloudflare_api_key: ''

Your Cloudflare Global API Key, optionally encryped ansible-vault encrypt_string 'cloudflareAPIKey' --name 'certbot_cloudflare_api_key'

certbot_certs:
  - email: {{certbot_cloudflare_email}}
    domains:
      - *.example3.com

The wildcard domain to create the cert for. For non-wildcard domains I recommend using geerlingguy.certbot

certbot_cloudflare_acme_server: "{{ certbot_cloudflare_acme_test }}"

or 

certbot_cloudflare_acme_server: "{{ certbot_cloudflare_acme_live }}"

Let's Encrypt server to use, defaults to test.

Dependencies

  • geerlingguy.pip
  • geerlingguy.certbot

Example Playbook

Including an example of how to use your role (for instance, with variables passed in as parameters) is always nice for users too:

- hosts: servers

  vars:
    certbot_cloudflare_email: "cloudflare@example.com"
    certbot_cloudflare_api_key: 'myapikey'
    certbot_certs:
      - email: {{certbot_cloudflare_email}}
        domains:
          - *.example3.com

  roles:
     - michaelpporter.certbot-cloudflare

License

MIT / BSD

Author Information

This role was created in 2018 by Michael Porter.

About

Ansible Role for setting up Wildcard certs with certbot and Cloudflare dns plugin

https://galaxy.ansible.com/michaelpporter/certbot_cloudflare