Add taskd cert

Signed-off-by: Johannes Löthberg <johannes@kyriasis.com>
author: Johannes Löthberg <johannes@kyriasis.com> 2018-04-07 20:24:32 +0100
committer: Johannes Löthberg <johannes@kyriasis.com> 2018-04-07 20:24:32 +0100
commit: 2c3845cbdd45ff6bc197a73f3b3719054d460019 (patch)
tree: 069d59fdb4bb5d6873f29292b284262dcd7207f6
parent: bd934b8b23fc59292cd12fbeeb3d3a6d1da84413 (diff)
download: file-2c3845cbdd45ff6bc197a73f3b3719054d460019.tar.xz
2 files changed, 19 insertions, 0 deletions
diff --git a/theos/certs/init.sls b/theos/certs/init.sls
index 77e205e..bf56ea2 100644
--- a/theos/certs/init.sls
+++ b/theos/certs/init.sls
@@ -4,6 +4,7 @@ include:
   - .git_kyriasis_com
   - .matrix_kyriasis_com
   - .riot.kyriasis.com
+  - .taskd_kyriasis_com
   - .miniflux_kyriasis_com
 
 /etc/letsencrypt/archive:
diff --git a/theos/certs/taskd_kyriasis_com.sls b/theos/certs/taskd_kyriasis_com.sls
new file mode 100644
index 0000000..4924a3d
--- /dev/null
+++ b/theos/certs/taskd_kyriasis_com.sls
@@ -0,0 +1,18 @@
+taskd.kyriasis.com:
+  acme.cert:
+    - email: johannes@kyriasis.com
+    - webroot: /srv/http/
+    - keysize: 4096
+    - renew: 30
+
+taskd-access-taskd-cert:
+  acl.present:
+    - name: /etc/letsencrypt/archive/taskd.kyriasis.com/
+    - acl_type: default:user
+    - acl_name: taskd
+    - perms: r-x
+    - recurse: True
+    - require_in:
+      - acme: taskd.kyriasis.com
+
+# vim: set ft=yaml et:
author	Johannes Löthberg <johannes@kyriasis.com>	2018-04-07 20:24:32 +0100
committer	Johannes Löthberg <johannes@kyriasis.com>	2018-04-07 20:24:32 +0100
commit	2c3845cbdd45ff6bc197a73f3b3719054d460019 (patch)
tree	069d59fdb4bb5d6873f29292b284262dcd7207f6
parent	bd934b8b23fc59292cd12fbeeb3d3a6d1da84413 (diff)
download	file-2c3845cbdd45ff6bc197a73f3b3719054d460019.tar.xz