WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-24 10:31:56 +08:00
Code Issues Packages Projects Releases Wiki Activity

Use a new key for staging SAML2 IdP

Browse Source 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
This commit is contained in:
Patrick Uiterwijk
2017-06-14 23:26:28 +00:00
parent 4bd13c8229
commit bbe67ebfbd
1 changed files with 2 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
roles/ipsilon/tasks/main.yml
View File

@@ -154,16 +154,14 @@
- ipsilon
- name: copy SAML2 private key
copy: src={{ private }}/files/saml2/production/keys/idp.key dest=/etc/ipsilon/saml2/idp.key
copy: src={{ private }}/files/saml2/{{ env }}/keys/idp.key dest=/etc/ipsilon/saml2/idp.key
owner=ipsilon group=ipsilon mode=0600
when: env != "staging"
tags:
- ipsilon
- name: copy SAML2 public key
copy: src={{ private }}/files/saml2/production/keys/idp.crt dest=/etc/ipsilon/saml2/idp.crt
copy: src={{ private }}/files/saml2/{{ env }}/keys/idp.crt dest=/etc/ipsilon/saml2/idp.crt
owner=ipsilon group=ipsilon mode=0644
when: env != "staging"
tags:
- ipsilon
@@ -173,20 +171,6 @@
tags:
- ipsilon
- name: copy SAML2 STG private key
copy: src={{ private }}/files/ipsilon/saml2.stg.key dest=/etc/ipsilon/saml2/certificate.stg.key
owner=ipsilon group=ipsilon mode=0600
when: env == "staging"
tags:
- ipsilon
- name: copy SAML STG public key
copy: src=saml2.stg.pem dest=/etc/ipsilon/saml2/certificate.stg.pem
owner=ipsilon group=ipsilon mode=0644
when: env == "staging"
tags:
- ipsilon
- name: set sebooleans so ipsilon can talk to the db
seboolean: name=httpd_can_network_connect_db