34 lines
1005 B
YAML
34 lines
1005 B
YAML
---
|
|
- ini_file:
|
|
dest: /etc/letsencrypt/openssl.cnf
|
|
section: 'req'
|
|
option: "{{ item.name }}"
|
|
value: "{{ item.var }}"
|
|
with_items:
|
|
- { name: 'default_bits', var: "{{ evoacme_ssl_key_size }}" }
|
|
- { name: 'encrypt_key', var: 'yes' }
|
|
- { name: 'distinguished_name', var: 'req_dn' }
|
|
- { name: 'prompt', var: 'no' }
|
|
|
|
- name: Update openssl conf
|
|
ini_file:
|
|
dest: "{{ evoacme_crt_dir }}/openssl.cnf"
|
|
section: 'req_dn'
|
|
option: "{{ item.name }}"
|
|
value: "{{ item.var }}"
|
|
with_items:
|
|
- { name: 'C', var: "{{ evoacme_ssl_ct }}" }
|
|
- { name: 'ST', var: "{{ evoacme_ssl_state }}" }
|
|
- { name: 'L', var: "{{ evoacme_ssl_loc }}" }
|
|
- { name: 'O', var: "{{ evoacme_ssl_org }}" }
|
|
- { name: 'OU', var: "{{ evoacme_ssl_ou }}" }
|
|
- { name: 'emailAddress', var: "{{ evoacme_ssl_email }}" }
|
|
|
|
- name: Copy new evoacme conf
|
|
template:
|
|
src: templates/evoacme.conf.j2
|
|
dest: /etc/default/evoacme
|
|
owner: root
|
|
group: root
|
|
mode: "644"
|