From 65973fb41e4145288978e209da963fc43d314e90 Mon Sep 17 00:00:00 2001
From: jurgenhaas <juergen@paragon-es.de>
Date: Mon, 9 Apr 2018 11:44:57 +0200
Subject: [PATCH] #6 Implement logrotate

---
 tasks/install.yml   | 16 ++++++++++++++++
 templates/logrotate |  9 +++++++++
 2 files changed, 25 insertions(+)
 create mode 100644 templates/logrotate

diff --git a/tasks/install.yml b/tasks/install.yml
index 8ef1d96..b71668d 100644
--- a/tasks/install.yml
+++ b/tasks/install.yml
@@ -17,3 +17,19 @@
     pkg: 'certbot'
     state: 'present'
     update_cache: yes
+
+- name: "Ensure log directory"
+  file:
+    path: '/var/log/letsencrypt'
+    state: 'directory'
+    mode: '700'
+  tags: 'logrotate'
+
+- name: "Enable logrotate"
+  template:
+    src: 'logrotate'
+    dest: '/etc/logrotate.d/letsencrypt'
+    owner: 'root'
+    group: 'root'
+    mode: '644'
+  tags: 'logrotate'
diff --git a/templates/logrotate b/templates/logrotate
new file mode 100644
index 0000000..4cd1d86
--- /dev/null
+++ b/templates/logrotate
@@ -0,0 +1,9 @@
+/var/log/letsencrypt/*.log {
+  daily
+  rotate 7
+  missingok
+  compress
+  delaycompress
+  notifempty
+  sharedscripts
+}
-- 
GitLab