summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
-rw-r--r--theos/certs/init.sls1
-rw-r--r--theos/certs/taskd_kyriasis_com.sls18
2 files changed, 19 insertions, 0 deletions
diff --git a/theos/certs/init.sls b/theos/certs/init.sls
index 77e205e..bf56ea2 100644
--- a/theos/certs/init.sls
+++ b/theos/certs/init.sls
@@ -4,6 +4,7 @@ include:
- .git_kyriasis_com
- .matrix_kyriasis_com
- .riot.kyriasis.com
+ - .taskd_kyriasis_com
- .miniflux_kyriasis_com
/etc/letsencrypt/archive:
diff --git a/theos/certs/taskd_kyriasis_com.sls b/theos/certs/taskd_kyriasis_com.sls
new file mode 100644
index 0000000..4924a3d
--- /dev/null
+++ b/theos/certs/taskd_kyriasis_com.sls
@@ -0,0 +1,18 @@
+taskd.kyriasis.com:
+ acme.cert:
+ - email: johannes@kyriasis.com
+ - webroot: /srv/http/
+ - keysize: 4096
+ - renew: 30
+
+taskd-access-taskd-cert:
+ acl.present:
+ - name: /etc/letsencrypt/archive/taskd.kyriasis.com/
+ - acl_type: default:user
+ - acl_name: taskd
+ - perms: r-x
+ - recurse: True
+ - require_in:
+ - acme: taskd.kyriasis.com
+
+# vim: set ft=yaml et: