Commit 153c0b49 authored by ale's avatar ale

Remove item references in task names

parent daa5c64f
Pipeline #6206 failed with stage
in 3 minutes and 37 seconds
...@@ -12,7 +12,7 @@ ...@@ -12,7 +12,7 @@
state: directory state: directory
loop: "{{ float_host_service_credentials_certs }}" loop: "{{ float_host_service_credentials_certs }}"
- name: "Check the certificate for {{ item.credentials.name }}/{{ item.mode }}" - name: "Check the internal PKI certificates"
x509_csr: x509_csr:
credentials_name: "{{ item.credentials.name }}" credentials_name: "{{ item.credentials.name }}"
domain: "{{ domain }}" domain: "{{ domain }}"
...@@ -27,7 +27,7 @@ ...@@ -27,7 +27,7 @@
register: x509_should_update register: x509_should_update
# TODO: set the right permissions (credentials.name-credentials) # TODO: set the right permissions (credentials.name-credentials)
- name: "Create the CSR for {{ item.0.credentials.name }}/{{ item.0.mode }}" - name: "Create internal PKI CSRs"
x509_csr: x509_csr:
credentials_name: "{{ item.0.credentials.name }}" credentials_name: "{{ item.0.credentials.name }}"
domain: "{{ domain }}" domain: "{{ domain }}"
...@@ -39,7 +39,7 @@ ...@@ -39,7 +39,7 @@
loop: "{{ float_host_service_credentials_certs | zip(x509_should_update.results) | list }}" loop: "{{ float_host_service_credentials_certs | zip(x509_should_update.results) | list }}"
register: x509_csr register: x509_csr
- name: "Create the certificate for {{ item.0.credentials.name }}/{{ item.0.mode }}" - name: "Sign internal PKI certificates"
x509_sign: x509_sign:
csr: "{{ item.1.csr }}" csr: "{{ item.1.csr }}"
mode: "{{ item.0.mode }}" mode: "{{ item.0.mode }}"
...@@ -49,7 +49,7 @@ ...@@ -49,7 +49,7 @@
loop: "{{ float_host_service_credentials_certs | zip(x509_csr.results) | list }}" loop: "{{ float_host_service_credentials_certs | zip(x509_csr.results) | list }}"
register: x509_sign register: x509_sign
- name: "Install the signed certificate for {{ item.0.credentials.name }}/{{ item.0.mode }}" - name: "Install the signed internal PKI certificates"
copy: copy:
dest: "/etc/credentials/x509/{{ item.0.credentials.name }}/{{ item.0.mode }}/cert.pem" dest: "/etc/credentials/x509/{{ item.0.credentials.name }}/{{ item.0.mode }}/cert.pem"
content: "{{ item.1.cert }}" content: "{{ item.1.cert }}"
...@@ -57,7 +57,7 @@ ...@@ -57,7 +57,7 @@
when: "item.1.changed" when: "item.1.changed"
loop: "{{ float_host_service_credentials_certs | zip(x509_sign.results) | list }}" loop: "{{ float_host_service_credentials_certs | zip(x509_sign.results) | list }}"
- name: Set permissions on the private key - name: "Set permissions on the private keys"
file: file:
path: "/etc/credentials/x509/{{ item.credentials.name }}/{{ item.mode }}/private_key.pem" path: "/etc/credentials/x509/{{ item.credentials.name }}/{{ item.mode }}/private_key.pem"
group: "{{ item.credentials.name }}-credentials" group: "{{ item.credentials.name }}-credentials"
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment