From 42f3b69bf2bc9aa1f2cf6e6c11744dc9173c67f6 Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Wed, 3 Sep 2025 08:46:49 -0500
Subject: [PATCH] websites/pyrocufflink: Switch to mod_md for cert

The _pyrocufflink.net_ site now obtains its certificate from Let's
Encrypt using the Apache _mod_md_ (managed domain) module.  This
dramatically simplifies the deployment of this certificate, eliminating
the need for _cert-manager_ to obtain it, _cert-exporter_ to add it to
_certs.git_, and Jenkins to push it out to the web server.
---
 certs/websites/pyrocufflink.net.cer                      | 1 -
 certs/websites/pyrocufflink.net.key                      | 1 -
 roles/websites/pyrocufflink.net/meta/main.yml            | 9 ---------
 .../templates/pyrocufflink.httpd.conf.j2                 | 3 +--
 4 files changed, 1 insertion(+), 13 deletions(-)
 delete mode 120000 certs/websites/pyrocufflink.net.cer
 delete mode 120000 certs/websites/pyrocufflink.net.key
 delete mode 100644 roles/websites/pyrocufflink.net/meta/main.yml

diff --git a/certs/websites/pyrocufflink.net.cer b/certs/websites/pyrocufflink.net.cer
deleted file mode 120000
index 9ebe139..0000000
--- a/certs/websites/pyrocufflink.net.cer
+++ /dev/null
@@ -1 +0,0 @@
-../lego/_.pyrocufflink.net.crt
\ No newline at end of file
diff --git a/certs/websites/pyrocufflink.net.key b/certs/websites/pyrocufflink.net.key
deleted file mode 120000
index 3253dd8..0000000
--- a/certs/websites/pyrocufflink.net.key
+++ /dev/null
@@ -1 +0,0 @@
-../lego/_.pyrocufflink.net.key
\ No newline at end of file
diff --git a/roles/websites/pyrocufflink.net/meta/main.yml b/roles/websites/pyrocufflink.net/meta/main.yml
deleted file mode 100644
index 94c0a30..0000000
--- a/roles/websites/pyrocufflink.net/meta/main.yml
+++ /dev/null
@@ -1,9 +0,0 @@
-dependencies:
-- role: cert
-  vars:
-    cert_src: websites/pyrocufflink.net.cer
-    cert_dest: /etc/pki/tls/certs/pyrocufflink.net.cer
-    cert_key_src: websites/pyrocufflink.net.key
-    cert_key_dest: /etc/pki/tls/private/pyrocufflink.net.key
-  tags:
-  - websites/pyrocufflink.net
\ No newline at end of file
diff --git a/roles/websites/pyrocufflink.net/templates/pyrocufflink.httpd.conf.j2 b/roles/websites/pyrocufflink.net/templates/pyrocufflink.httpd.conf.j2
index a84edd4..94f54f5 100644
--- a/roles/websites/pyrocufflink.net/templates/pyrocufflink.httpd.conf.j2
+++ b/roles/websites/pyrocufflink.net/templates/pyrocufflink.httpd.conf.j2
@@ -10,9 +10,8 @@
 
 <VirtualHost _default_:443>
     ServerName pyrocufflink.net
+    ServerAlias www.pyrocufflink.net
     Include conf.d/ssl.include
-    SSLCertificateFile /etc/pki/tls/certs/pyrocufflink.net.cer
-    SSLCertificateKeyFile /etc/pki/tls/private/pyrocufflink.net.key
 
     ProxyRequests Off
     RewriteEngine On