FQCN, ansible-lint, renamed playbook
This commit is contained in:
Sven Velt
parent
ac102f44af
commit
52ae5ce3bb
|
|
@ -4,4 +4,3 @@ selfsignedcert_suffix_csr: csr.pem
|
|||
selfsignedcert_suffix_crt: crt.pem
|
||||
|
||||
selfsignedcert_suffix_combined: pem
|
||||
|
||||
|
|
|
|||
|
|
@ -7,9 +7,8 @@ galaxy_info:
|
|||
|
||||
license: GPL-2.0-or-later
|
||||
|
||||
min_ansible_version: 2.9
|
||||
min_ansible_version: '2.10'
|
||||
|
||||
galaxy_tags:
|
||||
- certificate
|
||||
- ssl
|
||||
|
||||
|
|
|
|||
|
|
@ -4,4 +4,3 @@
|
|||
roles:
|
||||
- role: selfsignedcert
|
||||
selfsignedcert_basename: ./example-cert
|
||||
|
||||
|
|
@ -1,28 +1,28 @@
|
|||
---
|
||||
- name: Sanity checks
|
||||
assert:
|
||||
ansible.builtin.assert:
|
||||
that:
|
||||
- selfsignedcert_basename|default("") != ""
|
||||
- selfsignedcert_basename | default("") != ""
|
||||
|
||||
|
||||
- name: Generate private key
|
||||
openssl_privatekey:
|
||||
community.crypto.openssl_privatekey:
|
||||
path: '{{ selfsignedcert_basename }}.{{ selfsignedcert_suffix_key }}'
|
||||
size: '{{ selfsignedcert_keysize|default(2048) }}'
|
||||
mode: 0600
|
||||
size: '{{ selfsignedcert_keysize | default(2048) }}'
|
||||
mode: '0600'
|
||||
register: selfsignedcert_result_key
|
||||
|
||||
|
||||
- name: Generate CSR
|
||||
openssl_csr:
|
||||
community.crypto.openssl_csr:
|
||||
path: '{{ selfsignedcert_basename }}.{{ selfsignedcert_suffix_csr }}'
|
||||
privatekey_path: '{{ selfsignedcert_basename }}.{{ selfsignedcert_suffix_key }}'
|
||||
common_name: '{{ selfsigned_cn|default(ansible_hostname) }}'
|
||||
subject_alt_name: '{{ selfsigned_san|default([]) }}'
|
||||
common_name: '{{ selfsigned_cn | default(ansible_hostname) }}'
|
||||
subject_alt_name: '{{ selfsigned_san | default([]) }}'
|
||||
|
||||
|
||||
- name: Generate certificate
|
||||
openssl_certificate:
|
||||
community.crypto.x509_certificate:
|
||||
path: '{{ selfsignedcert_basename }}.{{ selfsignedcert_suffix_crt }}'
|
||||
privatekey_path: '{{ selfsignedcert_basename }}.{{ selfsignedcert_suffix_key }}'
|
||||
csr_path: '{{ selfsignedcert_basename }}.{{ selfsignedcert_suffix_csr }}'
|
||||
|
|
@ -31,11 +31,9 @@
|
|||
|
||||
|
||||
- name: Combine key and certificate
|
||||
template:
|
||||
ansible.builtin.template:
|
||||
src: combined.j2
|
||||
dest: '{{ selfsignedcert_basename }}.{{ selfsignedcert_suffix_combined }}'
|
||||
mode: 0600
|
||||
backup: yes
|
||||
when: selfsignedcert_suffix_combined != False
|
||||
|
||||
|
||||
mode: '0600'
|
||||
backup: true
|
||||
when: not selfsignedcert_suffix_combined
|
||||
|
|
|
|||
Loading…
Reference in a new issue