3206fd02b8
This creates sites to serve developer.openstack.org docs.openstack.org docs.opendev.org docs.starlingx.io which are all just static directories underneath /afs/openstack.org/. This is currently done by files02.openstack.org, but will be better served in the future by consolidating in ansible configuration on static.opendev.org. The following dns entries need to be made before merging to ensure the certificates are provisioned _acme-challenge.developer.openstack.org _acme-challenge.docs.openstack.org _acme-challenge.docs.opendev.org _acme-challenge.docs.starlingx.io Once done, we can merge and then cut-over the main DNS entries as we like. Since there are some follow-ons, I have not removed the puppet configuration from files02.openstack.org. I think it's best we migrate everything away from that and remove it in one lot. Change-Id: I459a36f823a8868e6cc09e2b0d85f2fe05d69002 |
||
|---|---|---|
| .. | ||
| defaults | ||
| handlers | ||
| tasks | ||
| README.rst | ||
Generate letsencrypt certificates
This must run after the letsencrypt-install-acme-sh,
letsencrypt-request-certs and
letsencrypt-install-txt-records roles. It will run the
acme.sh process to create the certificates on the host.
Role Variables
If set to True, will locally generate self-signed certificates in the same locations the real script would, instead of contacting letsencrypt. This is set during gate testing as the authentication tokens are not available.
If set to True will use the letsencrypt staging environment, rather than make production requests. Useful during initial provisioning of hosts to avoid affecting production quotas.
The same variable as described in
letsencrypt-request-certs.