add mongodb_ssl_letsencrypt_ca_dir variable

2018-09-20 11:18:38 +02:00 · 2018-09-20 11:18:38 +02:00 · 7c30f39124
parent 6a0878dd9a
commit 7c30f39124
1 changed files with 2 additions and 1 deletions
--- a/mongodb-org/defaults/main.yml
+++ b/mongodb-org/defaults/main.yml
@ -51,12 +51,13 @@ mongodb_storage_engine: wiredTiger
 mongodb_ssl_enabled: False
 mongodb_ssl_letsencrypt_managed: True
 mongodb_ssl_letsencrypt_ca_url: 'https://letsencrypt.org/certs/lets-encrypt-x3-cross-signed.pem.txt'
+mongodb_ssl_letsencrypt_ca_dir: /etc/pki/mongodb
 mongodb_ssl_letsencrypt_ca_filename: lets-encrypt-x3-cross-signed.pem
 # Options: disabled, requireSSL, allowSSL, preferSSL
 mongodb_ssl_mode: requireSSL
 mongodb_ssl_cert_dir: /etc/pki/mongodb
 mongodb_ssl_certkey_file: '{{ mongodb_ssl_cert_dir }}/mongodb.pem'
-mongodb_ssl_CA_file: '{{ mongodb_ssl_letsencrypt_ca_filename }}'
+mongodb_ssl_CA_file: '{{ mongodb_ssl_letsencrypt_ca_dir }}/{{ mongodb_ssl_letsencrypt_ca_filename }}'
 mongodb_ssl_allowConnectionsWithoutCertificates: 'true'
 mongodb_ssl_disabled_protocols: 'TLS1_0,TLS1_1'