This adds a playbook just for adding custom domains. It serves two purposes: 1) it includes only the roles necessary for the task (instead of running the full amc.yml playbook with tags to restrict it to those roles) which makes things much simpler for debugging and 2) it runs the letsencrypt role before nginx, which is needed when we set up a new custom domain (the nginx configs expect that the SSL cert is already there) but breaks when installing a new Tahoe deployment. That lets us keep the ordering in amc.yml that will work on a new Tahoe deployment but have the order right for Tahoe Cert Agent to run when adding a custom domain.
This adds a playbook just for adding custom domains. It serves two purposes: 1) it includes only the roles necessary for the task (instead of running the full
amc.ymlplaybook with tags to restrict it to those roles) which makes things much simpler for debugging and 2) it runs theletsencryptrole beforenginx, which is needed when we set up a new custom domain (the nginx configs expect that the SSL cert is already there) but breaks when installing a new Tahoe deployment. That lets us keep the ordering inamc.ymlthat will work on a new Tahoe deployment but have the order right for Tahoe Cert Agent to run when adding a custom domain.