blob: 3b276afed61fea5ba3e04d9eabc05a33308771a3 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
|
---
# acmesh_email: bob@exmaple.com
# Delegate DNS to this domain for example.com by setting
# _acme-challenge IN CNAME letsencrypt-delegate.example.com.
# or so. It does not even have to be at the same domain.
# acmesh_delegation_domain: letsencrypt-delegate.example.com
# acmesh_domains:
# - example.com
# You'll want to put this into vault
acmesh_env: |
export AWS_DEFAULT_REGION=us-east-2
export AWS_SECRET_ACCESS_KEY=<changeme>
export AWS_ACCESS_KEY_ID=<changeme>
# Set to an empty string to request from the production server, otherwise
# your certificates will be technically correct but invalid
acmesh_flags: --staging
acmesh_user:
name: acme
home: /var/acme
shell: /sbin/nologin
system: 'yes'
acmesh_dest: '{{acmesh_user.home}}/install'
acmesh_commit: f2d350002e7c387fad9777a42cf9befe34996c35
acmesh_url: https://github.com/acmesh-official/acme.sh/archive/{{acmesh_commit}}.tar.gz
acmesh_checksum: sha256:a4e0cb73748eedf5029dd082a61eb7e35767f36356f2dfb18233ee4eb4f757cf
|
