mailing move

defaults/main/1_main.yml

@@ -62,6 +62,7 @@ defaults_certs:
     verbosity: 'v'
     certs: {}  # see 'default_le_certbot_cert' below
     renew: false  # if a renewal should be started by the role; the renewal service will auto-renew the certificates otherwise
+    hook:
     email:
     key_size:
 

tasks/snakeoil.yml

@@ -25,7 +25,7 @@
     CERT_CONFIG.cert.ips | length > 0 or
     CERT_CONFIG.cert.san_other
 
-- name: Certfificates | Snakeoil | Build command
+- name: Certificates | Snakeoil | Build command
   ansible.builtin.set_fact:
     cert_cmd: "openssl req -x509 -newkey rsa:{{ CERT_CONFIG.cert.key_size }} -sha256 -nodes \
       {% if CERT_CONFIG.cert.cn | default(none, true) is not none %}
@@ -34,12 +34,12 @@
       {% if cert_san | default(none, true) is not none %}
       -addext \"subjectAltName = {{ cert_san | replace(' ', '') }}\" \
       {% endif %}
-      -keyout {{ cert_key }} -out {{ cert_pub }} \
+      -keyout {{ _cert_key }} -out {{ _cert_pub }} \
       -days {{ CERT_CONFIG.cert.valid_days }}"
-    cert_pub: "{{ cert_pub }}"
+    cert_pub: "{{ _cert_pub }}"
   vars:
-    cert_pub: "{{ CERT_CONFIG.path }}/{{ name | default(CERT_CONFIG.cert.name) }}.{{ CERT_CONFIG.extension_cert }}"
-    cert_key: "{{ CERT_CONFIG.path }}/{{ name | default(CERT_CONFIG.cert.name) }}.{{ CERT_CONFIG.extension_key }}"
+    _cert_pub: "{{ CERT_CONFIG.path }}/{{ name | default(CERT_CONFIG.cert.name) }}.{{ CERT_CONFIG.extension_cert }}"
+    _cert_key: "{{ CERT_CONFIG.path }}/{{ name | default(CERT_CONFIG.cert.name) }}.{{ CERT_CONFIG.extension_key }}"
 
 - name: Certificates | Snakeoil | Certificate command
   ansible.builtin.debug: