It creates a folder, the nginx vhost for certbot and HTTP redirects, and also runs certbot and recreates the nginx vhost that includes the TLS cert
The domain name is hardcoded exactly 12 times in just the letsencrypt recipe.
This allows us to use the API proxy from the cluster