cwchristerw/tjas-infra
1
0
Fork 0
mirror of https://github.com/cwchristerw/tjas-infra synced 2025-09-20 11:12:52 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update OpenSSL tasks in Deployer

Browse Source
This commit is contained in:
Christer Warén
2025-09-10 13:06:33 +03:00
parent ca83c7b07c
commit 63a2160478
1 changed files with 8 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
tasks/deployer.yml
View File

@@ -604,31 +604,30 @@
- www - www
- name: "Deployer - OpenSSL - Configure - Generate Fullchain" - name: "Deployer - OpenSSL - Configure - Generate Fullchain"
community.crypto.certificate_complete_chain: ansible.builtin.copy:
chain: dest: "/root/data/openssl/{{ cert }}/fullchain.pem"
- "/root/data/openssl/{{ cert }}/cert.pem" content: "{{ lookup('ansible.builtin.file', '/root/data/openssl/{{ cert }}/cert.pem') }}{{ lookup('ansible.builtin.file', '/root/data/openssl/' + config.openssl.certificates[cert].issuer + '/cert.pem') }}{{ lookup('ansible.builtin.file', '/root/data/openssl/root/cert.pem') }}"
- "/root/data/openssl/{{ config.openssl.certificates[cert].issuer }}/cert.pem"
path: "/root/data/openssl/{{ cert }}/fullchain.pem"
loop: "{{ config.openssl.certificates.keys() | list }}" loop: "{{ config.openssl.certificates.keys() | list }}"
loop_control: loop_control:
label: "{{ cert }}" label: "{{ cert }}"
loop_var: "cert" loop_var: "cert"
when: when:
- config.openssl.certificates[cert].domains is defined
- config.openssl.certificates[cert].issuer is defined - config.openssl.certificates[cert].issuer is defined
tags: tags:
- openssl - openssl
- www - www
- name: "Deployer - OpenSSL - Configure - Generate Chain" - name: "Deployer - OpenSSL - Configure - Generate Chain"
community.crypto.certificate_complete_chain: ansible.builtin.copy:
chain: dest: "/root/data/openssl/{{ cert }}/chain.pem"
- "/root/data/openssl/{{ config.openssl.certificates[cert].issuer }}/cert.pem" content: "{{ lookup('ansible.builtin.file', '/root/data/openssl/{{ cert }}/cert.pem') }}{{ lookup('ansible.builtin.file', '/root/data/openssl/' + config.openssl.certificates[cert].issuer + '/cert.pem') }}{{ lookup('ansible.builtin.file', '/root/data/openssl/root/cert.pem') }}"
path: "/root/data/openssl/{{ cert }}/chain.pem"
loop: "{{ config.openssl.certificates.keys() | list }}" loop: "{{ config.openssl.certificates.keys() | list }}"
loop_control: loop_control:
label: "{{ cert }}" label: "{{ cert }}"
loop_var: "cert" loop_var: "cert"
when: when:
- config.openssl.certificates[cert].domains is defined
- config.openssl.certificates[cert].issuer is defined - config.openssl.certificates[cert].issuer is defined
tags: tags:
- openssl - openssl