From 2c3845cbdd45ff6bc197a73f3b3719054d460019 Mon Sep 17 00:00:00 2001
From: Johannes Löthberg <johannes@kyriasis.com>
Date: Sat, 7 Apr 2018 20:24:32 +0100
Subject: Add taskd cert
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Johannes Löthberg <johannes@kyriasis.com>
---
 theos/certs/init.sls               |  1 +
 theos/certs/taskd_kyriasis_com.sls | 18 ++++++++++++++++++
 2 files changed, 19 insertions(+)
 create mode 100644 theos/certs/taskd_kyriasis_com.sls

diff --git a/theos/certs/init.sls b/theos/certs/init.sls
index 77e205e..bf56ea2 100644
--- a/theos/certs/init.sls
+++ b/theos/certs/init.sls
@@ -4,6 +4,7 @@ include:
   - .git_kyriasis_com
   - .matrix_kyriasis_com
   - .riot.kyriasis.com
+  - .taskd_kyriasis_com
   - .miniflux_kyriasis_com
 
 /etc/letsencrypt/archive:
diff --git a/theos/certs/taskd_kyriasis_com.sls b/theos/certs/taskd_kyriasis_com.sls
new file mode 100644
index 0000000..4924a3d
--- /dev/null
+++ b/theos/certs/taskd_kyriasis_com.sls
@@ -0,0 +1,18 @@
+taskd.kyriasis.com:
+  acme.cert:
+    - email: johannes@kyriasis.com
+    - webroot: /srv/http/
+    - keysize: 4096
+    - renew: 30
+
+taskd-access-taskd-cert:
+  acl.present:
+    - name: /etc/letsencrypt/archive/taskd.kyriasis.com/
+    - acl_type: default:user
+    - acl_name: taskd
+    - perms: r-x
+    - recurse: True
+    - require_in:
+      - acme: taskd.kyriasis.com
+
+# vim: set ft=yaml et:
-- 
cgit v1.2.3-54-g00ecf