From e0e56a2e4a083f6fae0f974d8bf8eeec01ed6837 Mon Sep 17 00:00:00 2001
From: Kaitlyn Parkhurst <symkat@symkat.com>
Date: Sun, 6 Nov 2022 10:49:43 -0800
Subject: [PATCH] Linode secrets.

---
 .../roles/mjb-profile-certbot/tasks/main.yml  | 22 +++++++++++++++++++
 1 file changed, 22 insertions(+)

diff --git a/devops/ansible/roles/mjb-profile-certbot/tasks/main.yml b/devops/ansible/roles/mjb-profile-certbot/tasks/main.yml
index a5b2f22..f3043de 100644
--- a/devops/ansible/roles/mjb-profile-certbot/tasks/main.yml
+++ b/devops/ansible/roles/mjb-profile-certbot/tasks/main.yml
@@ -52,6 +52,28 @@
     line: "rsync -rLptgoD -e \"ssh -o StrictHostKeyChecking=no\" /etc/letsencrypt/live root@{{ item }}:/etc/letsencrypt"
   with_items: "{{ deploy_addresses }}"
 
+- name: Create /etc/letsencrypt/.secrets/
+  file:
+    state: directory
+    path: /etc/letsencrypt/.secrets
+    owner: root
+    group: root
+    mode: 0750
+
+- name: Create /etc/letsencrypt/.secrets/linode.ini
+  file:
+    state: touch
+    path:  /etc/letsencrypt/.secrets/linode.ini
+    owner: root
+    group: root
+    mode: 0644
+
+- name: "Populatge linode secrets"
+  lineinfile:
+    path: /etc/letsencrypt/.secrets/linode.ini
+    line: "{{ item }}"
+  with_items: "{{ linode_dns_credentials }}"
+
 - name: Create keypair for syncing
   openssh_keypair:
     path: "/root/.ssh/id_rsa"