From 5d3ca738c0399d35e6a81e5d379f61d3aafe8464 Mon Sep 17 00:00:00 2001
From: Jan Beilicke <dev@jotbe.io>
Date: Sun, 29 Mar 2020 16:06:10 +0200
Subject: [PATCH] Added possibility to disable acme (Let's Encrypt). Traefik
 will then only use self-signed certificates

---
 defaults/main.yml         | 1 +
 templates/traefik.toml.j2 | 3 +++
 2 files changed, 4 insertions(+)

diff --git a/defaults/main.yml b/defaults/main.yml
index 3f5aad1..c404f7b 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -4,6 +4,7 @@ traefik_virtual_host: localhost
 traefik:
   expose_internally: True
   expose_externally: False
+  enable_acme: False
   use_acme_staging: True
   dns_challenge_provider: False
   # NOT WORKING YET!
diff --git a/templates/traefik.toml.j2 b/templates/traefik.toml.j2
index 37fa613..11cee39 100644
--- a/templates/traefik.toml.j2
+++ b/templates/traefik.toml.j2
@@ -20,6 +20,7 @@ watch = true
   endpoint = "unix:///var/run/docker.sock"
   exposedByDefault = false
 
+{% if traefik.enable_acme %}
 [certificatesResolvers.defaultresolver.acme]
 {% if traefik.use_acme_staging %}
   caServer = "https://acme-staging-v02.api.letsencrypt.org/directory"
@@ -28,6 +29,8 @@ watch = true
   storage = "acme.json"
   [certificatesResolvers.defaultresolver.acme.httpChallenge]
     entryPoint = "web"
+{% endif %}
+
 
 {% if traefik.extra_mapping | default(False) %}
 ### NOT WORKING YET!