public_git
/
ansibleguy.infra_certs
mirror of https://github.com/ansibleguy/infra_certs.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

lint fixes

This commit is contained in:
AnsibleGuy 2022-09-15 17:55:17 +02:00
parent 2873b64ba3
commit ce4aa596d6
5 changed files with 21 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
defaults/main.yml
View File

@ -93,10 +93,10 @@ default_le_certbot_cert:
email: "{{ CERT_CONFIG.letsencrypt.email }}" email: "{{ CERT_CONFIG.letsencrypt.email }}"
# letsencrypt example: # letsencrypt example:
#certs: # certs:
# example1: # example1:
# domains: ['example1.ansibleguy.net'] # domains: ['example1.ansibleguy.net']
# email: 'dummy@ansibleguy.net' # email: 'dummy@ansibleguy.net'
# example2: # example2:
# domains: ['example2.ansibleguy.net'] # domains: ['example2.ansibleguy.net']
# email: 'dummy@ansibleguy.net' # email: 'dummy@ansibleguy.net'

10
meta/main.yml
View File

@ -4,13 +4,17 @@ galaxy_info:
author: 'AnsibleGuy <guy@ansibleguy.net>' author: 'AnsibleGuy <guy@ansibleguy.net>'
namespace: 'ansibleguy' namespace: 'ansibleguy'
license: 'GPLv3' license: 'GPLv3'
issue_tracker_url: 'https://github.com/ansibleguy/ROLE/issues' issue_tracker_url: 'https://github.com/ansibleguy/infra_certs/issues'
min_ansible_version: 2.9.10 min_ansible_version: 2.9.10
description: '' description: 'Meat-role to generate/manage certificates for other roles'
platforms: platforms:
- name: Debian - name: Debian
versions: versions:
- bullseye - bullseye
galaxy_tags: [] galaxy_tags:
- 'certificates'
- 'certs'
- 'letsencrypt'
- 'certbot'
collections: [] collections: []

2
molecule/default/converge.yml
View File

@ -95,7 +95,7 @@
cert: cert:
name: 'self_minca_pwd' name: 'self_minca_pwd'
domains: ['cert.test.ansibleguy.net'] domains: ['cert.test.ansibleguy.net']
ips: [ '192.168.0.1' ] ips: ['192.168.0.1']
cn: 'CA-Signed Server Cert' cn: 'CA-Signed Server Cert'
pwd: 'Nope.' pwd: 'Nope.'
key_usage: 'serverAuth' key_usage: 'serverAuth'

3
tasks/internal/ca_minimal.yml
View File

@ -6,6 +6,9 @@
ansible.builtin.file: ansible.builtin.file:
path: "{{ config_ca.ca.path | default(config_ca.path, true) }}" path: "{{ config_ca.ca.path | default(config_ca.path, true) }}"
state: directory state: directory
mode: 0750
owner: "{{ config_ca.owner_key }}"
group: "{{ config_ca.group_key }}"
- name: Certificates | Internal | Minimal CA | Generate ca private key (encrypted key) - name: Certificates | Internal | Minimal CA | Generate ca private key (encrypted key)
community.crypto.openssl_privatekey: community.crypto.openssl_privatekey:

3
tasks/internal/main.yml
View File

@ -16,6 +16,9 @@
ansible.builtin.file: ansible.builtin.file:
path: "{{ CERT_CONFIG.path }}" path: "{{ CERT_CONFIG.path }}"
state: directory state: directory
mode: 0750
owner: "{{ CERT_CONFIG.owner_key }}"
group: "{{ CERT_CONFIG.group_key }}"
tags: [certs, ca] tags: [certs, ca]
- name: Certificates | Internal | Minimal CA - name: Certificates | Internal | Minimal CA