WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-28 20:42:20 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
3782dad657e4e3f6a0263de4d8fec00a0669de4a
fedora-infra_ansible/roles/etcd_ca/tasks/main.yml

45 lines
1008 B
YAML
Raw Blame History

---
- file:
path: "{{ etcd_ca_dir }}/{{ item }}"
state: directory
mode: 0700
owner: root
group: root
with_items:
- certs
- crl
- fragments
- command: cp /etc/pki/tls/openssl.cnf ./
args:
chdir: "{{ etcd_ca_dir }}/fragments"
creates: "{{ etcd_ca_dir }}/fragments/openssl.cnf"
- template:
dest: "{{ etcd_ca_dir }}/fragments/openssl_append.cnf"
src: openssl_append.j2
- assemble:
src: "{{ etcd_ca_dir }}/fragments"
dest: "{{ etcd_ca_dir }}/openssl.cnf"
- command: touch index.txt
args:
chdir: "{{ etcd_ca_dir }}"
creates: "{{ etcd_ca_dir }}/index.txt"
- copy:
dest: "{{ etcd_ca_dir }}/serial"
content: "01"
force: no
- command: >
openssl req -config openssl.cnf -newkey rsa:4096
-keyout ca.key -new -out ca.crt -x509 -extensions etcd_v3_ca_self
-batch -nodes -subj /CN=etcd-signer@{{ ansible_date_time.epoch }}
args:
chdir: "{{ etcd_ca_dir }}"
creates: "{{ etcd_ca_dir }}/ca.crt"
environment:
SAN: ''
Reference in New Issue View Git Blame Copy Permalink