From 3be20369353d7baeff1ccfc7a7ebc4785559f903 Mon Sep 17 00:00:00 2001
From: jurgenhaas <juergen@paragon-es.de>
Date: Thu, 23 Apr 2020 12:03:47 +0200
Subject: [PATCH] ansible-playbooks/general#95 Do not change iptable settings
when creating or renewing certs
---
tasks/cert_generate.yml | 6 ++++--
tasks/renew.yml | 6 ++++--
2 files changed, 8 insertions(+), 4 deletions(-)
diff --git a/tasks/cert_generate.yml b/tasks/cert_generate.yml
index 9714e55..022890f 100644
--- a/tasks/cert_generate.yml
+++ b/tasks/cert_generate.yml
@@ -17,7 +17,8 @@
protocol: tcp
jump: ACCEPT
state: present
- when: groups.proxyserver is defined and inventory_hostname in groups.proxyserver
+ #when: groups.proxyserver is defined and inventory_hostname in groups.proxyserver
+ when: no
- name: Install New Cert via webroot
shell: certbot certonly --expand --non-interactive --config /etc/letsencrypt/{{ cert.domain }}.ini --cert-name {{ cert.domain }} --webroot-path /var/www/html --webroot
@@ -37,7 +38,8 @@
protocol: tcp
jump: ACCEPT
state: absent
- when: groups.proxyserver is defined and inventory_hostname in groups.proxyserver
+ #when: groups.proxyserver is defined and inventory_hostname in groups.proxyserver
+ when: no
- include_tasks: cert_deploy.yml
diff --git a/tasks/renew.yml b/tasks/renew.yml
index a91b0b9..d1936be 100644
--- a/tasks/renew.yml
+++ b/tasks/renew.yml
@@ -19,7 +19,8 @@
protocol: tcp
jump: ACCEPT
state: present
- when: groups.proxyserver is defined and inventory_hostname in groups.proxyserver
+ #when: groups.proxyserver is defined and inventory_hostname in groups.proxyserver
+ when: no
- name: Renew Existing Certs via webroot
shell: certbot renew --non-interactive --webroot-path /var/www/html --webroot
@@ -43,7 +44,8 @@
protocol: tcp
jump: ACCEPT
state: absent
- when: groups.proxyserver is defined and inventory_hostname in groups.proxyserver
+ #when: groups.proxyserver is defined and inventory_hostname in groups.proxyserver
+ when: no
- include_tasks: cert_deploy.yml
with_items: '{{ letsencrypt_certificates|default([]) }}'
--
GitLab