ansible/cfssl-server-role
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

fix role

Browse source
This commit is contained in:
nono 2022-12-21 20:51:34 +01:00
parent f2816881b3
commit a171adff47
5 changed files with 78 additions and 78 deletions
Download patch file Download diff file Expand all files Collapse all files

3
tasks/main.yml
View file

@ -92,16 +92,19 @@
shell: '{{cfssl_bin_directory}}/cfssl gencert -initca {{pki_dir}}/csr/csr_ROOT_CA.json | {{cfssl_bin_directory}}/cfssljson -bare ca'
args:
chdir: '{{pki_dir}}/CA/'
creates: '{{pki_dir}}/CA/ca-key.pem'
- name: create intermediate certificate authority key pair and CSR, autosign it
shell: '{{cfssl_bin_directory}}/cfssl gencert -ca {{pki_dir}}/CA/ca.pem -ca-key {{pki_dir}}/CA/ca-key.pem -config={{pki_dir}}/etc/cfssl.json -profile="intermediate_ca" {{pki_dir}}/csr/csr_intermediate_CA.json | {{cfssl_bin_directory}}/cfssljson -bare ca-server'
args:
chdir: '{{pki_dir}}/CA/'
creates: '{{pki_dir}}/CA/ca-server-key.pem'
- name: create sqlite3 database
shell: 'cat {{pki_dir}}/data/init.sql | sqlite3 {{pki_dir}}/data/certdb.db'
args:
chdir: '{{pki_dir}}/CA/'
creates: '{{pki_dir}}/data/certdb.db'
- name: Change owner of ca-server.pem by cfssl