Browse Source

Fix SSL certificate for ZNC so that it begins with a private key.

Hector Castro 11 years ago
parent
commit
2e7005eaec

+ 7
- 0
roles/ircbouncer/tasks/znc.yml View File

@@ -34,6 +34,13 @@
34 34
 - name: Copy znc init file into place
35 35
   copy: src=etc_init.d_znc dest=/etc/init.d/znc mode=0755
36 36
 
37
+- name: Create a combined version of the private key with public cert and intermediate + root CAs
38
+  shell: cat /etc/ssl/private/wildcard_private.key /etc/ssl/certs/wildcard_combined.pem >
39
+    /var/lib/znc/znc.pem creates=/var/lib/znc/znc.pem
40
+
41
+- name: Ensure znc user and group can read cert
42
+  file: path=/var/lib/znc/znc.pem group=znc owner=znc
43
+
37 44
 # NOTE: you should probably just generate this using the directions above and then edit via the web panel
38 45
 #- name: Copy znc configuration file into place
39 46
 #  template: src=var_lib_znc_configs_znc.conf.j2 dest=/var/lib/znc/configs/znc.conf owner=znc group=znc

+ 0
- 1
roles/ircbouncer/templates/var_lib_znc_configs_znc.conf.j2 View File

@@ -14,7 +14,6 @@ LoadModule = lastseen
14 14
 MaxBufferSize = 500
15 15
 PidFile = /var/run/znc/znc.pid
16 16
 ProtectWebSessions = true
17
-SSLCertFile = /etc/ssl/certs/wildcard_combined.pem
18 17
 ServerThrottle = 30
19 18
 Skin = _default_
20 19
 StatusPrefix = *

Loading…
Cancel
Save