Revert "roles/nginx: Only run Let's Encrypt checks once a day"

This reverts commit a38d822fad. The docs definitely recommend twice a day. From a note on certbot's installation page: > if you're setting up a cron or systemd job, we recommend running > it twice per day (it won't do anything until your certificates > are due for renewal or revoked, but running it regularly would > give your site a chance of staying online in case a Let's > Encrypt-initiated revocation happened for some reason). Please > select a random minute within the hour for your renewal tasks. See: https://certbot.eff.org/#ubuntuxenial-nginx
2016-08-17 11:30:10 +03:00 · 2016-08-17 11:30:10 +03:00 · 8bee2d7a72
commit 8bee2d7a72
parent 437dbf470e
1 changed files with 2 additions and 2 deletions
--- a/roles/nginx/files/renew-letsencrypt.timer
+++ b/roles/nginx/files/renew-letsencrypt.timer
@ -2,8 +2,8 @@
 Description=Renew Let's Encrypt certificates

 [Timer]
-# once a day, at 2AM
-OnCalendar=*-*-* 02:00:00
+# twice a day, at midnight and noon
+OnCalendar=*-*-* 00,12:00:00
 # Add a random delay of 0–3600 seconds
 RandomizedDelaySec=3600
 Persistent=true