public_git
/
ansibleguy.infra_certs
mirror of https://github.com/ansibleguy/infra_certs.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
ansibleguy.infra_certs/tasks/internal/main.yml

38 lines
997 B
YAML
Raw Permalink Blame History

---
- name: Certificates | Internal | Checking config
ansible.builtin.assert:
that:
- CERT_CONFIG.cert.name or name
- CERT_CONFIG.cert.cn
- CERT_CONFIG.mode != 'ca' or CERT_CONFIG.ca.cn
tags: always
- name: Certificates | Internal | Installing dependencies
ansible.builtin.package:
pkg: ['python3-cryptography']
tags: [certs, ca]
- name: Certificates | Internal | Creating cert directory
ansible.builtin.file:
path: "{{ CERT_CONFIG.path }}"
state: directory
mode: 0750
owner: "{{ CERT_CONFIG.owner_key }}"
group: "{{ CERT_CONFIG.group_key }}"
tags: [certs, ca]
- name: Certificates | Internal | Minimal CA
ansible.builtin.import_tasks: ca_minimal.yml
vars:
config_ca: "{{ CERT_CONFIG }}"
when: CERT_CONFIG.mode == 'ca'
tags: [ca]
- name: Certificates | Internal | Cert
ansible.builtin.import_tasks: cert.yml
vars:
config_cert: "{{ CERT_CONFIG }}"
when: "CERT_CONFIG.mode in ['ca', 'selfsigned']"
tags: [certs]
Reference in New Issue View Git Blame Copy Permalink