ISTI-ansible-roles
/
ansible-role-basic-system-setup
5
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Fixes to the names syntax.

This commit is contained in:
Andrea Dell'Amico 2023-10-08 17:48:49 +02:00
parent f7bcf65516
commit 66e12d354b
Signed by: adellam
GPG Key ID: 147ABE6CEB9E20FF
1 changed files with 7 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
tasks/certificate_from_private_ca.yml
View File

@ -1,12 +1,12 @@
--- ---
- name: Create the certificate using the private CA - name: certificate_from_private_ca | Create the certificate using the private CA
tags: [pki, tls, tls_certificate] tags: [pki, tls, tls_certificate]
block: block:
- name: Set the common group between mkcert-ca and ansible - name: certificate_from_private_ca | Set the common group between mkcert-ca and ansible
ansible.builtin.set_fact: ansible.builtin.set_fact:
ansible_common_remote_group: ansible ansible_common_remote_group: ansible
- name: Create the certificate (delegate to the CA vm) - name: certificate_from_private_ca | Create the certificate (delegate to the CA vm)
ansible.builtin.command: ansible.builtin.command:
cmd: mkcert -cert-file /srv/mkcert-ca/{{ mkcert_cert_name }} -key-file /srv/mkcert-ca/{{ mkcert_key_name }} {{ mkcert_dsn_and_ip_list }} cmd: mkcert -cert-file /srv/mkcert-ca/{{ mkcert_cert_name }} -key-file /srv/mkcert-ca/{{ mkcert_key_name }} {{ mkcert_dsn_and_ip_list }}
args: args:
@ -16,10 +16,10 @@
CAROOT: /srv/mkcert-ca/.local/share/mkcert CAROOT: /srv/mkcert-ca/.local/share/mkcert
delegate_to: "{{ mkcert_ca_host }}" delegate_to: "{{ mkcert_ca_host }}"
- name: Manage the certificate installation - name: certificate_from_private_ca | Manage the certificate installation
tags: [pki, tls, tls_certificate] tags: [pki, tls, tls_certificate]
block: block:
- name: Get the certificate and its key from the CA server - name: certificate_from_private_ca | Get the certificate and its key from the CA server
ansible.builtin.fetch: ansible.builtin.fetch:
src: "/srv/mkcert-ca/{{ item }}" src: "/srv/mkcert-ca/{{ item }}"
dest: "files/" dest: "files/"
@ -29,7 +29,7 @@
- "{{ mkcert_key_name }}" - "{{ mkcert_key_name }}"
delegate_to: "{{ mkcert_ca_host }}" delegate_to: "{{ mkcert_ca_host }}"
- name: Copy the certificate to the destination server - name: certificate_from_private_ca | Copy the certificate to the destination server
ansible.builtin.copy: ansible.builtin.copy:
src: "files/{{ mkcert_cert_name }}" src: "files/{{ mkcert_cert_name }}"
dest: "{{ mkcert_cert_dest_path }}" dest: "{{ mkcert_cert_dest_path }}"
@ -37,7 +37,7 @@
group: root group: root
mode: 0444 mode: 0444
- name: Copy the certificate to the destination server - name: certificate_from_private_ca | Copy the certificate to the destination server
ansible.builtin.copy: ansible.builtin.copy:
src: "files/{{ mkcert_key_name }}" src: "files/{{ mkcert_key_name }}"
dest: "{{ mkcert_key_dest_path }}" dest: "{{ mkcert_key_dest_path }}"