From 15e5885fdd8025fa13d6a4885926f1c6b6ceab17 Mon Sep 17 00:00:00 2001
From: Bart Geesink <bart.geesink@surf.nl>
Date: Tue, 2 Jul 2024 11:00:55 +0200
Subject: [PATCH] Haproxy: acme.sh should get an RSA cert

---
 roles/haproxy/tasks/get_acme_certs.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/roles/haproxy/tasks/get_acme_certs.yml b/roles/haproxy/tasks/get_acme_certs.yml
index e811147f9..96b63942d 100644
--- a/roles/haproxy/tasks/get_acme_certs.yml
+++ b/roles/haproxy/tasks/get_acme_certs.yml
@@ -1,7 +1,7 @@
 ---
 - name: Install the certificates using acme
   ansible.builtin.shell:
-    cmd: "/home/acme/.acme.sh/acme.sh --issue --stateless -d {{ base_domain }} {% for application in haproxy_applications %} -d {{ application.vhost_name }}  {% endfor %} --server https://acme.sectigo.com/v2/GEANTOV"
+    cmd: "/home/acme/.acme.sh/acme.sh --issue --stateless --keylength 2048  -d {{ base_domain }} {% for application in haproxy_applications %} -d {{ application.vhost_name }}  {% endfor %} --server https://acme.sectigo.com/v2/GEANTOV"
   become_user: acme
   become: true