nextcloud: Fetch HTTPS cert from Kubernetes

Since Nextcloud uses the _pyrocufflink.net_ wildcard certificate, we can load it directly from the Kubernetes Secret, rather than from the file in the _certs_ submodule, just like Gitea et al.
2025-08-11 10:39:54 -05:00 · 2025-08-11 10:39:54 -05:00 · b72676a1bb
parent f5ab739c9e
commit b72676a1bb
2 changed files with 1 additions and 8 deletions
--- a/1
+++ b/1
@ -278,6 +278,7 @@ file0.pyrocufflink.blue
 [wildcard-cert:children]
 file-servers
 gitea
+nextcloud
 pxe

 [zezere]
--- a/roles/nextcloud/meta/main.yml
+++ b/roles/nextcloud/meta/main.yml
@ -3,11 +3,3 @@ dependencies:
 - role: redis
  tags:
  - redis
- role: cert
-  vars:
-    cert_src: lego/_.pyrocufflink.net.crt
-    cert_dest: '{{ apache_ssl_certificate }}'
-    cert_key_src: lego/_.pyrocufflink.net.key
-    cert_key_dest: '{{ apache_ssl_certificate_key }}'
-  tags:
-  - nextcloud