diff options
| -rw-r--r-- | playbook.yaml | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/playbook.yaml b/playbook.yaml index 2a85ba1..9cc207d 100644 --- a/playbook.yaml +++ b/playbook.yaml @@ -82,10 +82,14 @@ ~/.lego/certificates/{{ virtual_host }}.crt -noout -pubkey | openssl pkey -pubin -outform DER | openssl dgst -sha256 -binary | hexdump -ve '/1 "%02x"' - register: dane_hash + register: dane_result changed_when: false delegate_to: localhost + - name: Take note of DANE hash + ansible.builtin.set_fact: + dane_hash: "{{ dane_result.stdout }}" + # We allow status code 400 here as this is returned by deSEC if the domain # already exists. Ideally, we should filter out genuinely good/bad requests # here using the response. |