- name: include pre_requisite.yml
  import_tasks: pre_requisite.yml

- name: creating cnf file
  template:
    src: server.cnf.j2
    dest: '{{cnf_file}}'
    owner: root
    group: root
    mode: 0644

- name: create csr and key with openssl
  shell: 'openssl req -new -newkey rsa:2048 -nodes -sha256 -config {{cnf_file}} -out {{csr_file}} -keyout {{key_file}}'

- name: sign certificate
  shell: '{{cfssl_bin_directory}}/cfssl sign -remote "{{cfssl_serve_url}}" -profile "{{cfssl_profile}}" {{csr_file}} | cfssljson -bare -stdout > {{cert_file}}'

- name: remove csr in content certificate
  shell: 'openssl x509 -in {{cert_file}} -out {{cert_file}}'

- name: recuperate ca certificate
  shell: '{{cfssl_bin_directory}}/cfssl info -remote "{{cfssl_serve_url}}"  | cfssljson -bare -stdout > /usr/local/share/ca-certificates/{{ca_filename}}'
  when: integrate_ca

- name: Update CA Store
  shell: 'update-ca-certificates'
  when: integrate_ca