thomas
/
sovereign
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

Fix SSL certificate for ZNC so that it begins with a private key.

Hector Castro 10 years ago
parent
b48b66d029
commit
2e7005eaec
2 changed files with 7 additions and 1 deletions
Split View Show Diff Stats
  1. 7
    0
      roles/ircbouncer/tasks/znc.yml
  2. 0
    1
      roles/ircbouncer/templates/var_lib_znc_configs_znc.conf.j2

+ 7
- 0
roles/ircbouncer/tasks/znc.yml View File 

@@ -34,6 +34,13 @@
34 34 
 - name: Copy znc init file into place
35 35 
   copy: src=etc_init.d_znc dest=/etc/init.d/znc mode=0755
36 36
37 
+- name: Create a combined version of the private key with public cert and intermediate + root CAs
38 
+  shell: cat /etc/ssl/private/wildcard_private.key /etc/ssl/certs/wildcard_combined.pem >
39 
+    /var/lib/znc/znc.pem creates=/var/lib/znc/znc.pem
40 
+
41 
+- name: Ensure znc user and group can read cert
42 
+  file: path=/var/lib/znc/znc.pem group=znc owner=znc
43 
+
37 44 
 # NOTE: you should probably just generate this using the directions above and then edit via the web panel
38 45 
 #- name: Copy znc configuration file into place
39 46 
 #  template: src=var_lib_znc_configs_znc.conf.j2 dest=/var/lib/znc/configs/znc.conf owner=znc group=znc

+ 0
- 1
roles/ircbouncer/templates/var_lib_znc_configs_znc.conf.j2 View File 

@@ -14,7 +14,6 @@ LoadModule = lastseen
14 14 
 MaxBufferSize = 500
15 15 
 PidFile = /var/run/znc/znc.pid
16 16 
 ProtectWebSessions = true
17 
-SSLCertFile = /etc/ssl/certs/wildcard_combined.pem
18 17 
 ServerThrottle = 30
19 18 
 Skin = _default_
20 19 
 StatusPrefix = *

Write Preview
Loading…
Cancel
Save