Files
.github
collections
docs
examples
group_vars
inventory
roles
matrix-aux
matrix-backup-borg
matrix-base
matrix-bot-go-neb
matrix-bot-honoroit
matrix-bot-matrix-reminder-bot
matrix-bot-mjolnir
matrix-bridge-appservice-discord
matrix-bridge-appservice-irc
matrix-bridge-appservice-slack
matrix-bridge-appservice-webhooks
matrix-bridge-beeper-linkedin
matrix-bridge-heisenbridge
matrix-bridge-hookshot
matrix-bridge-mautrix-facebook
matrix-bridge-mautrix-googlechat
matrix-bridge-mautrix-hangouts
matrix-bridge-mautrix-instagram
matrix-bridge-mautrix-signal
matrix-bridge-mautrix-telegram
matrix-bridge-mautrix-twitter
matrix-bridge-mautrix-whatsapp
matrix-bridge-mx-puppet-discord
matrix-bridge-mx-puppet-groupme
matrix-bridge-mx-puppet-instagram
matrix-bridge-mx-puppet-skype
matrix-bridge-mx-puppet-slack
matrix-bridge-mx-puppet-steam
matrix-bridge-mx-puppet-twitter
matrix-bridge-sms
matrix-client-cinny
matrix-client-element
matrix-client-hydrogen
matrix-common-after
matrix-corporal
matrix-coturn
matrix-dendrite
matrix-dimension
matrix-dynamic-dns
matrix-email2matrix
matrix-etherpad
matrix-grafana
matrix-jitsi
matrix-ma1sd
matrix-mailer
matrix-nginx-proxy
defaults
tasks
ssl
main.yml
setup_ssl_lets_encrypt.yml
setup_ssl_lets_encrypt_obtain_for_domain.yml
setup_ssl_manually_managed.yml
setup_ssl_manually_managed_verify_for_domain.yml
setup_ssl_self_signed.yml
setup_ssl_self_signed_obtain_for_domain.yml
init.yml
main.yml
self_check_well_known.yml
self_check_well_known_file.yml
setup_nginx_proxy.yml
setup_well_known.yml
validate_config.yml
templates
vars
matrix-postgres
matrix-postgres-backup
matrix-prometheus
matrix-prometheus-node-exporter
matrix-prometheus-postgres-exporter
matrix-redis
matrix-registration
matrix-sygnal
matrix-synapse
matrix-synapse-admin
.editorconfig
.gitignore
.yamllint
CHANGELOG.md
LICENSE
README.md
ansible.cfg
setup.yml
Alejo Diaz 4ec24ec344 Add support for obtain ECDSA keys ()
* Add support for obtain ECDSA keys

* Replace matrix_ssl_lets_encrypt_use_ecdsa_keys for matrix_ssl_lets_encrypt_key_type
2022-03-03 18:15:39 +02:00

37 lines
1.1 KiB
YAML

---
- name: Fail if using unsupported SSL certificate retrieval method
fail:
msg: "The `matrix_ssl_retrieval_method` variable contains an unsupported value"
when: "matrix_ssl_retrieval_method not in ['lets-encrypt', 'self-signed', 'manually-managed', 'none']"
- name: Fail if using unsupported private key type
fail:
msg: "The `matrix_ssl_lets_encrypt_key_type` variable contains an unsupported value"
when: "matrix_ssl_lets_encrypt_key_type not in ['rsa', 'ecdsa']"
# Common tasks, required by almost any method below.
- name: Ensure SSL certificate paths exists
file:
path: "{{ item }}"
state: directory
mode: 0770
owner: "{{ matrix_user_username }}"
group: "{{ matrix_user_groupname }}"
recurse: true
with_items:
- "{{ matrix_ssl_log_dir_path }}"
- "{{ matrix_ssl_config_dir_path }}"
when: "matrix_ssl_retrieval_method != 'none'"
# Method specific tasks follow
- import_tasks: tasks/ssl/setup_ssl_lets_encrypt.yml
- import_tasks: tasks/ssl/setup_ssl_self_signed.yml
- import_tasks: tasks/ssl/setup_ssl_manually_managed.yml