summaryrefslogtreecommitdiffstats
path: root/theos/certs
diff options
context:
space:
mode:
authorJohannes Löthberg <johannes@kyriasis.com>2018-04-07 20:24:32 +0100
committerJohannes Löthberg <johannes@kyriasis.com>2018-04-07 20:24:32 +0100
commit2c3845cbdd45ff6bc197a73f3b3719054d460019 (patch)
tree069d59fdb4bb5d6873f29292b284262dcd7207f6 /theos/certs
parentbd934b8b23fc59292cd12fbeeb3d3a6d1da84413 (diff)
downloadfile-2c3845cbdd45ff6bc197a73f3b3719054d460019.tar.xz
Add taskd cert
Signed-off-by: Johannes Löthberg <johannes@kyriasis.com>
Diffstat (limited to 'theos/certs')
-rw-r--r--theos/certs/init.sls1
-rw-r--r--theos/certs/taskd_kyriasis_com.sls18
2 files changed, 19 insertions, 0 deletions
diff --git a/theos/certs/init.sls b/theos/certs/init.sls
index 77e205e..bf56ea2 100644
--- a/theos/certs/init.sls
+++ b/theos/certs/init.sls
@@ -4,6 +4,7 @@ include:
- .git_kyriasis_com
- .matrix_kyriasis_com
- .riot.kyriasis.com
+ - .taskd_kyriasis_com
- .miniflux_kyriasis_com
/etc/letsencrypt/archive:
diff --git a/theos/certs/taskd_kyriasis_com.sls b/theos/certs/taskd_kyriasis_com.sls
new file mode 100644
index 0000000..4924a3d
--- /dev/null
+++ b/theos/certs/taskd_kyriasis_com.sls
@@ -0,0 +1,18 @@
+taskd.kyriasis.com:
+ acme.cert:
+ - email: johannes@kyriasis.com
+ - webroot: /srv/http/
+ - keysize: 4096
+ - renew: 30
+
+taskd-access-taskd-cert:
+ acl.present:
+ - name: /etc/letsencrypt/archive/taskd.kyriasis.com/
+ - acl_type: default:user
+ - acl_name: taskd
+ - perms: r-x
+ - recurse: True
+ - require_in:
+ - acme: taskd.kyriasis.com
+
+# vim: set ft=yaml et: