evolix/ansible-roles
22
2
Fork 2
Code Issues 61 Pull requests 18 Releases 32 Wiki Activity
ansible-roles/webapps/evoadmin-web/tasks/ssl.yml
Jérémy Lecour 1728eaee68
All checks were successful
gitea/ansible-roles/pipeline/head This commit looks good
Details
Revert "Add “when: not ansible_check_mode” to allow more --check" 
This reverts commit fafff25c20.
This reverts commit e64471c5a8084f95a8e6f955d3fa918c55b8e846.
2022-12-14 07:41:18 +01:00

25 lines
844 B
YAML
Raw Blame History

---
- name: ssl-cert package is installed
apt:
name: ssl-cert
state: present
- name: Create private key and csr for default site ({{ ansible_fqdn }})
command: openssl req -newkey rsa:2048 -sha256 -nodes -keyout /etc/ssl/private/{{ evoadmin_host }}.key -out /etc/ssl/{{ evoadmin_host }}.csr -batch -subj "/CN={{ evoadmin_host }}"
args:
creates: "/etc/ssl/private/{{ evoadmin_host }}.key"
- name: Adjust rights on private key
file:
path: /etc/ssl/private/{{ evoadmin_host }}.key
owner: root
group: ssl-cert
mode: "0640"
- name: Create certificate for default site
command: openssl x509 -req -days 3650 -sha256 -in /etc/ssl/{{ evoadmin_host }}.csr -signkey /etc/ssl/private/{{ evoadmin_host }}.key -out /etc/ssl/certs/{{ evoadmin_host }}.crt
args:
creates: "/etc/ssl/certs/{{ evoadmin_host }}.crt"
Reference in a new issue View git blame Copy permalink