From bb27a5d3ce3e5e855bdf154d6fc89375c43532d1 Mon Sep 17 00:00:00 2001
From: Bradley Bickford <bradleybickford@gmail.com>
Date: Mon, 25 Aug 2025 18:52:59 -0400
Subject: [PATCH] PFSense is weird about SSL and HSTS. Removing the S in HTTPS
 so it can redirect on its own

---
 playbooks/backup_protocol.yml | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/playbooks/backup_protocol.yml b/playbooks/backup_protocol.yml
index 2993807..d73264d 100644
--- a/playbooks/backup_protocol.yml
+++ b/playbooks/backup_protocol.yml
@@ -14,12 +14,13 @@
         opts: "hard,intr,nodev,nosuid,noexec"
         state: ephemeral
       delegate_to: blacktide
+      run_once: true
       become: true
       become_method: sudo
 
     - name: Get Cookies and CSRF Token
       ansible.builtin.uri:
-        url: "https://{{ backup_url }}/diag_backup.php"
+        url: "http://{{ backup_url }}/diag_backup.php"
         validate_certs: false
         method: GET
         return_content: true
@@ -35,7 +36,7 @@
 
     - name: Authenticate with backup page and register backup CSRF
       ansible.builtin.uri:
-        url: "https://{{ backup_url }}/diag_backup.php"
+        url: "http://{{ backup_url }}/diag_backup.php"
         validate_certs: false
         follow_redirects: false
         method: POST
@@ -60,7 +61,7 @@
 
     - name: Fetch Target page for new CSRF token
       ansible.builtin.uri:
-        url: "https://{{ backup_url }}/diag_backup.php"
+        url: "http://{{ backup_url }}/diag_backup.php"
         validate_certs: false
         follow_redirects: false
         method: GET
@@ -79,7 +80,7 @@
 
     - name: Download Backup Configuration
       ansible.builtin.uri:
-        url: "https://{{ backup_url }}/diag_backup.php"
+        url: "http://{{ backup_url }}/diag_backup.php"
         validate_certs: false
         follow_redirects: false
         method: "POST"