This site won't get any more updates, see github repo for most recent docs.
With ansible_openwrt you can manage Letsencrypt certificates for your OpenWrt devices. There are three different modes:
Example configuration for DNS-01 challenge:
openwrt_acme_account_email: "you@email.com"
openwrt_acme_cert:
maincert:
keylength: 4096
domains:
- "{{ inventory_hostname }}"
validation_method: "dns"
dns: "dns_pdns"
credentials:
- "PDNS_ServerId=localhost"
- "PDNS_Ttl=60"
- "PDNS_Url=\"https://yourapi_endpoint.com\""
- "PDNS_Token=\"yoursupersecurepassword\""
enabled: 1
use_staging: 0
update_uhttpd: 1
If you use validation_method: 'webroot' you also need to specify a path attribute within the openwrt_acme_cert dict item. In the above example below maincert.