You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 

67 lines
1.6 KiB

---
- name: Deploy new TLS-certificates to BigBlueButton-servers
hosts: bigbluebutton
tasks:
- name: Copy wildcard-certificate to BigBlueButton-servers
copy:
src: "{{ item.src }}"
dest: "{{ item.dest }}"
with_items:
- { src: privkey.pem, dest: /local/certs/ }
- { src: fullchain.pem, dest: /local/certs/ }
notify:
- Reload apache
handlers:
- name: Reload apache
ansible.builtin.systemd:
name: nginx
state: reloaded
- name: Deploy new TLS-certificates to STUN/TURN-servers
hosts: turnserver
tasks:
- name: Copy wildcard-certificate to BigBlueButton-servers
copy:
src: "{{ item.src }}"
dest: "{{ item.dest }}"
with_items:
- { src: privkey.pem, dest: /local/certs/ }
- { src: fullchain.pem, dest: /local/certs/ }
notify:
- Restart Coturn
handlers:
- name: Restart Coturn
ansible.builtin.systemd:
name: coturn
state: restarted
- name: Deploy new TLS-certificate to HAProxies
hosts: hascale
tasks:
- name: Copy wildcard-certfificate to HAProxy-servers
copy:
src: "{{ item.src }}"
dest: "{{ item.dest }}"
with_items:
- { src: privkey.pem, dest: /etc/ssl/private/ }
- { src: fullchain.pem, dest: /etc/ssl/private/ }
notify:
- Create fullprivkey
- Reload HAProxy
handlers:
- name: Create fullprivkey
ansible.builtin.shell: cat privkey.pem fullchain.pem > fullprivkey.pem
args:
chdir: /etc/ssl/private/
- name: Reload HAProxy
ansible.builtin.systemd:
name: haproxy
state: reloaded
...