27 lines
No EOL
942 B
YAML
27 lines
No EOL
942 B
YAML
- name: include pre_requisite.yml
|
|
import_tasks: pre_requisite.yml
|
|
|
|
- name: creating cnf file
|
|
template:
|
|
src: server.cnf.j2
|
|
dest: '{{cnf_file}}'
|
|
owner: root
|
|
group: root
|
|
mode: 0644
|
|
|
|
- name: create csr and key with openssl
|
|
shell: 'openssl req -new -newkey rsa:2048 -nodes -sha256 -config {{cnf_file}} -out {{csr_file}} -keyout {{key_file}}'
|
|
|
|
- name: sign certificate
|
|
shell: '{{cfssl_bin_directory}}/cfssl sign -remote "{{cfssl_serve_url}}" -profile "{{cfssl_profile}}" {{csr_file}} | cfssljson -bare -stdout > {{cert_file}}'
|
|
|
|
- name: remove csr in content certificate
|
|
shell: 'openssl x509 -in {{cert_file}} -out {{cert_file}}'
|
|
|
|
- name: recuperate ca certificate
|
|
shell: '{{cfssl_bin_directory}}/cfssl info -remote "{{cfssl_serve_url}}" | cfssljson -bare -stdout > /usr/local/share/ca-certificates/{{ca_filename}}'
|
|
when: integrate_ca
|
|
|
|
- name: Update CA Store
|
|
shell: 'update-ca-certificates'
|
|
when: integrate_ca |