network/roles/certbot_dns/templates/certbot-cleanup.j2

12 lines
255 B
Plaintext
Raw Normal View History

2023-12-18 10:22:14 +00:00
#!/bin/sh
dns={{ dns[0] }}
ldap_user={{ lookup("passwordstore", "hosts/"~inventory_hostname, subkey="ldap_user") }}
2023-12-18 10:22:14 +00:00
kinit -k -t /etc/krb5.keytab "${ldap_user}"
nsupdate -g <<EOF
server ${dns}
update delete _acme-challenge.${CERTBOT_DOMAIN} TXT
send
EOF