Skip to content

jburel-ca/ansible-role-certbot-cloudflare

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Certbot Cloudfare

Use Cloudflare DNS for wildcard certbot generation

Requirements

  • Cloudflare DNS setup
  • Cloudflare API Key
  • Wildcard domian setup (for wildcard certs) [*.domain.com or *.subdomain.domain.com]

Role Variables

certbot_cloudflare_email: "[email protected]"

Your Cloudflare email address

certbot_cloudflare_api_key: ''

Your Cloudflare Global API Key, optionally encryped ansible-vault encrypt_string 'cloudflareAPIKey' --name 'certbot_cloudflare_api_key'

certbot_certs:
  - email: {{certbot_cloudflare_email}}
    domains:
      - *.example3.com

The wildcard domain to create the cert for. For non-wildcard domains I recommend using geerlingguy.certbot

certbot_cloudflare_acme_server: "{{ certbot_cloudflare_acme_test }}"

or 

certbot_cloudflare_acme_server: "{{ certbot_cloudflare_acme_live }}"

Let's Encrypt server to use, defaults to test.

Dependencies

  • geerlingguy.pip
  • geerlingguy.certbot

Example Playbook

Including an example of how to use your role (for instance, with variables passed in as parameters) is always nice for users too:

- hosts: servers

  vars:
    certbot_cloudflare_email: "[email protected]"
    certbot_cloudflare_api_key: 'myapikey'
    certbot_certs:
      - email: {{certbot_cloudflare_email}}
        domains:
          - *.example3.com

  roles:
     - michaelpporter.certbot-cloudflare

License

MIT / BSD

Author Information

This role was created in 2018 by Michael Porter.

About

Ansible Role for setting up Wildcard certs with certbot and Cloudflare dns plugin

Resources

Stars

Watchers

Forks

Packages

No packages published