Ansible role for installing and configuring the ACME controller
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
defaults
files
meta
tasks
vars
.gitignore
LICENSE.md
README.md

README.md

OpenShift ACME Controller Ansible Role

This Ansible role installs and configures the OpenShift ACME controller.

Requirements

One of:

  • OpenShift Container Platform 3.5 or later
  • OpenShift Origin 1.5 or later

Role Variables

Name Default value Description
appuio_openshift_acme_namespace acme-controller Namespace to deploy the acme-controller
appuio_openshift_acme_endpoint Let's Encrypt Staging URL to ACME API endpoint
appuio_openshift_acme_docker_image docker.io/appuio/openshift-acme Docker Image to deploy
appuio_openshift_acme_docker_image_tag latest Tag of the Docker image to deploy
appuio_openshift_acme_replicas 1 Number of replicas to run

Dependencies

Example Usage

meta/main.yml of role using this role:

dependencies:
- src: git+https://github.com/appuio/ansible-role-openshift-acme
  version: v1.0.0

Hints

ACME Let's Encrypt URLs

The role supports aliases for URLs. These aliases make future URL changes easier (i.e. ACME v2 endpoint). The following aliases are included by default:

Either alias can be used instead of an actual URL in appuio_openshift_acme_endpoint, i.e.:

appuio_openshift_acme_endpoint: letsencrypt-production

A URL may also be used directly, i.e.:

appuio_openshift_acme_endpoint: https://api.custom.example.com/

Docker Image

There is a custom built docker image which is using the official golang image. It's linked to the golang repository, so if there are updates, it will automatically get rebuilt.

OpenShift template

The OpenShift template under files/acme-controller-template.yml can also be used standalone. Just invoke it with oc process. Note: You will need cluster-admin permissions to use this template as it creates a ClusterRole object.

License

Apache License Version 2.0

Author Information

APPUiO Team info@appuio.ch