From ee93586a95bc9d63963e75dbf4d55af80d2f1953 Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Sun, 24 Jan 2021 17:08:00 -0600
Subject: [PATCH] roles/apache: Add previously-ignored cert symlinks

Before the advent of `ansible-vault`, and  long before `certbot`/`lego`,
I used to keep certificate files (and especially private key files) out
of the Git repository.  Now that certificates are stored in a separate
repository, and only symlinks are stored in the configuration policy,
this no longer makes any sense.  In particular, it prevents the continuous
enforcement process from installing Let's Encrypt certificates that have
been automatically renewed.
---
 roles/apache/files/.gitignore                     | 6 ------
 roles/apache/files/file0.pyrocufflink.blue.cer    | 1 +
 roles/apache/files/file0.pyrocufflink.blue.key    | 1 +
 roles/apache/files/hass1.pyrocufflink.blue.cer    | 1 +
 roles/apache/files/hass1.pyrocufflink.blue.key    | 1 +
 roles/apache/files/jenkins0.pyrocufflink.blue.cer | 1 +
 roles/apache/files/jenkins0.pyrocufflink.blue.key | 1 +
 roles/apache/files/logs0.pyrocufflink.blue.cer    | 1 +
 roles/apache/files/logs0.pyrocufflink.blue.key    | 1 +
 roles/apache/files/matrix0.pyrocufflink.blue.cer  | 1 +
 roles/apache/files/matrix0.pyrocufflink.blue.key  | 1 +
 11 files changed, 10 insertions(+), 6 deletions(-)
 delete mode 100644 roles/apache/files/.gitignore
 create mode 120000 roles/apache/files/file0.pyrocufflink.blue.cer
 create mode 120000 roles/apache/files/file0.pyrocufflink.blue.key
 create mode 120000 roles/apache/files/hass1.pyrocufflink.blue.cer
 create mode 120000 roles/apache/files/hass1.pyrocufflink.blue.key
 create mode 120000 roles/apache/files/jenkins0.pyrocufflink.blue.cer
 create mode 120000 roles/apache/files/jenkins0.pyrocufflink.blue.key
 create mode 120000 roles/apache/files/logs0.pyrocufflink.blue.cer
 create mode 120000 roles/apache/files/logs0.pyrocufflink.blue.key
 create mode 120000 roles/apache/files/matrix0.pyrocufflink.blue.cer
 create mode 120000 roles/apache/files/matrix0.pyrocufflink.blue.key

diff --git a/roles/apache/files/.gitignore b/roles/apache/files/.gitignore
deleted file mode 100644
index 151513e..0000000
--- a/roles/apache/files/.gitignore
+++ /dev/null
@@ -1,6 +0,0 @@
-*.cer
-*.crt
-*.key
-*.pem
-*.keytab
-*.cnf
diff --git a/roles/apache/files/file0.pyrocufflink.blue.cer b/roles/apache/files/file0.pyrocufflink.blue.cer
new file mode 120000
index 0000000..fa9cde3
--- /dev/null
+++ b/roles/apache/files/file0.pyrocufflink.blue.cer
@@ -0,0 +1 @@
+../../../certs/lego/_.pyrocufflink.net.crt
\ No newline at end of file
diff --git a/roles/apache/files/file0.pyrocufflink.blue.key b/roles/apache/files/file0.pyrocufflink.blue.key
new file mode 120000
index 0000000..0345a4d
--- /dev/null
+++ b/roles/apache/files/file0.pyrocufflink.blue.key
@@ -0,0 +1 @@
+../../../certs/lego/_.pyrocufflink.net.key
\ No newline at end of file
diff --git a/roles/apache/files/hass1.pyrocufflink.blue.cer b/roles/apache/files/hass1.pyrocufflink.blue.cer
new file mode 120000
index 0000000..fa9cde3
--- /dev/null
+++ b/roles/apache/files/hass1.pyrocufflink.blue.cer
@@ -0,0 +1 @@
+../../../certs/lego/_.pyrocufflink.net.crt
\ No newline at end of file
diff --git a/roles/apache/files/hass1.pyrocufflink.blue.key b/roles/apache/files/hass1.pyrocufflink.blue.key
new file mode 120000
index 0000000..0345a4d
--- /dev/null
+++ b/roles/apache/files/hass1.pyrocufflink.blue.key
@@ -0,0 +1 @@
+../../../certs/lego/_.pyrocufflink.net.key
\ No newline at end of file
diff --git a/roles/apache/files/jenkins0.pyrocufflink.blue.cer b/roles/apache/files/jenkins0.pyrocufflink.blue.cer
new file mode 120000
index 0000000..62ab971
--- /dev/null
+++ b/roles/apache/files/jenkins0.pyrocufflink.blue.cer
@@ -0,0 +1 @@
+../../../certs/lego/_.pyrocufflink.net.pem
\ No newline at end of file
diff --git a/roles/apache/files/jenkins0.pyrocufflink.blue.key b/roles/apache/files/jenkins0.pyrocufflink.blue.key
new file mode 120000
index 0000000..0345a4d
--- /dev/null
+++ b/roles/apache/files/jenkins0.pyrocufflink.blue.key
@@ -0,0 +1 @@
+../../../certs/lego/_.pyrocufflink.net.key
\ No newline at end of file
diff --git a/roles/apache/files/logs0.pyrocufflink.blue.cer b/roles/apache/files/logs0.pyrocufflink.blue.cer
new file mode 120000
index 0000000..fa9cde3
--- /dev/null
+++ b/roles/apache/files/logs0.pyrocufflink.blue.cer
@@ -0,0 +1 @@
+../../../certs/lego/_.pyrocufflink.net.crt
\ No newline at end of file
diff --git a/roles/apache/files/logs0.pyrocufflink.blue.key b/roles/apache/files/logs0.pyrocufflink.blue.key
new file mode 120000
index 0000000..0345a4d
--- /dev/null
+++ b/roles/apache/files/logs0.pyrocufflink.blue.key
@@ -0,0 +1 @@
+../../../certs/lego/_.pyrocufflink.net.key
\ No newline at end of file
diff --git a/roles/apache/files/matrix0.pyrocufflink.blue.cer b/roles/apache/files/matrix0.pyrocufflink.blue.cer
new file mode 120000
index 0000000..fa9cde3
--- /dev/null
+++ b/roles/apache/files/matrix0.pyrocufflink.blue.cer
@@ -0,0 +1 @@
+../../../certs/lego/_.pyrocufflink.net.crt
\ No newline at end of file
diff --git a/roles/apache/files/matrix0.pyrocufflink.blue.key b/roles/apache/files/matrix0.pyrocufflink.blue.key
new file mode 120000
index 0000000..0345a4d
--- /dev/null
+++ b/roles/apache/files/matrix0.pyrocufflink.blue.key
@@ -0,0 +1 @@
+../../../certs/lego/_.pyrocufflink.net.key
\ No newline at end of file