Setup Lego, an alternative to certbot to provides certificates through the ACME protocol, and specificaly let's encrypt in our case.
Note, there are two directories meant for hooks where you can drop scripts that'll be executed via run-parts (hence chmod +x, shebang and no .sh or whatever extension):
/etc/letsencrypt/run-hookswill be executed on every Ansible run. That's meant for initial certificates generation, but happens everytime./etc/letsencrypt/renew-hookswill be executed by the daily "certificate renewal" cron.
This role is tested using Molecule. The default will use Docker that you must install yourself. Then run tox to setup python environment and start testing. If docker can't do, podman is a possibility running tox -- test -d podman. If neither docker or podman can do, for example if the role contains containers related tasks, Vagrant & KVM via libvirt is also possible, running tox -- test -s vagrant.
A Vagrantfile is also provided for development purpose. Install Vagrant and VirtualBox (or libvirt / KVM), then run vagrant up.
Python & tox. See imports in library/* and tasks in molecule/default/converge.yml if any specific, but those should be added in tox.ini.
See defaults/main.yml.
See meta/main.yml and molecule/default/requirements.yml if any.
- hosts: all
roles:
- legoMIT