Fix typos in Deployer tasks

Update OpenSSL tasks in Deployer
2025-12-02 13:53:39 +00:00 · 2025-09-10 13:12:01 +03:00 · 2025-09-10 13:06:33 +03:00
1 changed files with 8 additions and 14 deletions
--- a/tasks/deployer.yml
+++ b/tasks/deployer.yml
@@ -546,9 +546,6 @@
    path: "/root/data/openssl/{{ cert }}/cert.pem"
    privatekey_path: "/root/data/openssl/{{ cert }}/privkey.pem"
    csr_path: "/root/data/openssl/{{ cert }}/csr.pem"
-    provider: "ownca"
-    ownca_path: /etc/ssl/crt/ansible_CA.crt
-    ownca_privatekey_path: /etc/ssl/private/ansible_CA.pem
    provider: selfsigned
    selfsigned_not_after: "+7300d"
  loop: "{{ config.openssl.certificates.keys() | list }}"
@@ -569,7 +566,6 @@
    provider: "ownca"
    ownca_path: "/root/data/openssl/{{ config.openssl.certificates[cert].issuer }}/cert.pem"
    ownca_privatekey_path: "/root/data/openssl/{{ config.openssl.certificates[cert].issuer }}/privkey.pem"
-    provider: ownca
    ownca_not_after: "+365d"
  loop: "{{ config.openssl.certificates.keys() | list }}"
  loop_control:
@@ -590,7 +586,6 @@
    provider: "ownca"
    ownca_path: "/root/data/openssl/{{ config.openssl.certificates[cert].issuer }}/cert.pem"
    ownca_privatekey_path: "/root/data/openssl/{{ config.openssl.certificates[cert].issuer }}/privkey.pem"
-    provider: ownca
    ownca_not_after: "+30d"
  loop: "{{ config.openssl.certificates.keys() | list }}"
  loop_control:
@@ -604,31 +599,30 @@
    - www

 - name: "Deployer - OpenSSL - Configure - Generate Fullchain"
-  community.crypto.certificate_complete_chain:
-    chain:
-      - "/root/data/openssl/{{ cert }}/cert.pem"
-      - "/root/data/openssl/{{ config.openssl.certificates[cert].issuer }}/cert.pem"
-    path: "/root/data/openssl/{{ cert }}/fullchain.pem"
+  ansible.builtin.copy:
+    dest: "/root/data/openssl/{{ cert }}/fullchain.pem"
+    content: "{{ lookup('ansible.builtin.file', '/root/data/openssl/' + cert + '/cert.pem') }}{{ lookup('ansible.builtin.file', '/root/data/openssl/' + config.openssl.certificates[cert].issuer + '/cert.pem') }}{{ lookup('ansible.builtin.file', '/root/data/openssl/root/cert.pem') }}"
  loop: "{{ config.openssl.certificates.keys() | list }}"
  loop_control:
    label: "{{ cert }}"
    loop_var: "cert"
  when:
+    - config.openssl.certificates[cert].domains is defined
    - config.openssl.certificates[cert].issuer is defined
  tags:
    - openssl
    - www

 - name: "Deployer - OpenSSL - Configure - Generate Chain"
-  community.crypto.certificate_complete_chain:
-    chain:
-      - "/root/data/openssl/{{ config.openssl.certificates[cert].issuer }}/cert.pem"
-    path: "/root/data/openssl/{{ cert }}/chain.pem"
+  ansible.builtin.copy:
+    dest: "/root/data/openssl/{{ cert }}/chain.pem"
+    content: "{{ lookup('ansible.builtin.file', '/root/data/openssl/' + cert + '/cert.pem') }}{{ lookup('ansible.builtin.file', '/root/data/openssl/' + config.openssl.certificates[cert].issuer + '/cert.pem') }}{{ lookup('ansible.builtin.file', '/root/data/openssl/root/cert.pem') }}"
  loop: "{{ config.openssl.certificates.keys() | list }}"
  loop_control:
    label: "{{ cert }}"
    loop_var: "cert"
  when:
+    - config.openssl.certificates[cert].domains is defined
    - config.openssl.certificates[cert].issuer is defined
  tags:
    - openssl
Author	SHA1	Message	Date
Christer Warén	19a08cffa5	Fix typos in Deployer tasks	2025-09-10 13:12:01 +03:00
Christer Warén	63a2160478	Update OpenSSL tasks in Deployer	2025-09-10 13:06:33 +03:00