cwchristerw/tjas-infra
1
0
Fork 0
mirror of https://github.com/cwchristerw/tjas-infra synced 2025-09-09 23:12:51 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update OpenSSL tasks

Browse Source
This commit is contained in:
Christer Warén
2025-09-09 16:04:56 +03:00
parent b5c59f3f0d
commit ca83c7b07c
1 changed files with 40 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

40
tasks/deployer.yml
View File

@@ -557,6 +557,9 @@
loop_var: "cert"
when:
- config.openssl.certificates[cert].issuer is undefined
tags:
- openssl
- www
- name: "Deployer - OpenSSL - Configure - Generate Certificate / Intermediate"
community.crypto.x509_certificate:
@@ -575,6 +578,9 @@
when:
- config.openssl.certificates[cert].domains is undefined
- config.openssl.certificates[cert].issuer is defined
tags:
- openssl
- www
- name: "Deployer - OpenSSL - Configure - Generate Certificate / Service"
community.crypto.x509_certificate:
@@ -593,6 +599,40 @@
when:
- config.openssl.certificates[cert].domains is defined
- config.openssl.certificates[cert].issuer is defined
tags:
- openssl
- www
- name: "Deployer - OpenSSL - Configure - Generate Fullchain"
community.crypto.certificate_complete_chain:
chain:
- "/root/data/openssl/{{ cert }}/cert.pem"
- "/root/data/openssl/{{ config.openssl.certificates[cert].issuer }}/cert.pem"
path: "/root/data/openssl/{{ cert }}/fullchain.pem"
loop: "{{ config.openssl.certificates.keys() | list }}"
loop_control:
label: "{{ cert }}"
loop_var: "cert"
when:
- config.openssl.certificates[cert].issuer is defined
tags:
- openssl
- www
- name: "Deployer - OpenSSL - Configure - Generate Chain"
community.crypto.certificate_complete_chain:
chain:
- "/root/data/openssl/{{ config.openssl.certificates[cert].issuer }}/cert.pem"
path: "/root/data/openssl/{{ cert }}/chain.pem"
loop: "{{ config.openssl.certificates.keys() | list }}"
loop_control:
label: "{{ cert }}"
loop_var: "cert"
when:
- config.openssl.certificates[cert].issuer is defined
tags:
- openssl
- www
- name: "Deployer - Nginx - Configure - Create Folder"
ansible.builtin.file: