Fix letsencrypt bootstrap for ejabberd

2022-05-11 16:25:32 +02:00 · 2022-05-11 16:25:32 +02:00 · e89e0b3122
parent b3f1a74cc2
commit e89e0b3122
3 changed files with 2 additions and 5 deletions
--- a/roles/ejabberd.rb
+++ b/roles/ejabberd.rb
@ -7,8 +7,8 @@ default_run_list = %w(

 production_run_list = %w(
  role[postgresql_client]
-  kosmos-ejabberd::default
  kosmos-ejabberd::letsencrypt
+  kosmos-ejabberd::default
 )
 env_run_lists(
  'development' => default_run_list,
--- a/site-cookbooks/kosmos-base/recipes/letsencrypt.rb
+++ b/site-cookbooks/kosmos-base/recipes/letsencrypt.rb
@ -52,6 +52,7 @@ end
  end
 end

+# TODO check if nginx is installed/running on the node
 file "/etc/letsencrypt/renewal-hooks/deploy/nginx" do
  content <<-EOF
 #!/usr/bin/env bash
--- a/site-cookbooks/kosmos-ejabberd/templates/vhost.yml.erb
+++ b/site-cookbooks/kosmos-ejabberd/templates/vhost.yml.erb
@ -1,11 +1,7 @@
 # Generated by Chef for <%= @host[:name] %>
-# FIXME: The files only exist after the certbot hook created them, meaning
-# we need to run Chef a second time
-<% if File.exist?("/opt/ejabberd/conf/#{@host[:name]}.crt") && File.exist?("/opt/ejabberd/conf/#{@host[:name]}.key") -%>
 certfiles:
  - "/opt/ejabberd/conf/<%= @host[:name] %>.crt"
  - "/opt/ejabberd/conf/<%= @host[:name] %>.key"
-<% end -%>
 host_config:
  "<%= @host[:name] %>":
    sql_type: pgsql