Skip to content
Snippets Groups Projects
Commit 153c0b49 authored by ale's avatar ale
Browse files

Remove item references in task names

parent daa5c64f
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
roles/credentials/tasks/install_certs.yml
+ 5
5
View file @ 153c0b49
...@@ -12,7 +12,7 @@ ...@@ -12,7 +12,7 @@
state: directory state: directory
loop: "{{ float_host_service_credentials_certs }}" loop: "{{ float_host_service_credentials_certs }}"
- name: "Check the certificate for {{ item.credentials.name }}/{{ item.mode }}" - name: "Check the internal PKI certificates"
x509_csr: x509_csr:
credentials_name: "{{ item.credentials.name }}" credentials_name: "{{ item.credentials.name }}"
domain: "{{ domain }}" domain: "{{ domain }}"
...@@ -27,7 +27,7 @@ ...@@ -27,7 +27,7 @@
register: x509_should_update register: x509_should_update
# TODO: set the right permissions (credentials.name-credentials) # TODO: set the right permissions (credentials.name-credentials)
- name: "Create the CSR for {{ item.0.credentials.name }}/{{ item.0.mode }}" - name: "Create internal PKI CSRs"
x509_csr: x509_csr:
credentials_name: "{{ item.0.credentials.name }}" credentials_name: "{{ item.0.credentials.name }}"
domain: "{{ domain }}" domain: "{{ domain }}"
...@@ -39,7 +39,7 @@ ...@@ -39,7 +39,7 @@
loop: "{{ float_host_service_credentials_certs | zip(x509_should_update.results) | list }}" loop: "{{ float_host_service_credentials_certs | zip(x509_should_update.results) | list }}"
register: x509_csr register: x509_csr
- name: "Create the certificate for {{ item.0.credentials.name }}/{{ item.0.mode }}" - name: "Sign internal PKI certificates"
x509_sign: x509_sign:
csr: "{{ item.1.csr }}" csr: "{{ item.1.csr }}"
mode: "{{ item.0.mode }}" mode: "{{ item.0.mode }}"
...@@ -49,7 +49,7 @@ ...@@ -49,7 +49,7 @@
loop: "{{ float_host_service_credentials_certs | zip(x509_csr.results) | list }}" loop: "{{ float_host_service_credentials_certs | zip(x509_csr.results) | list }}"
register: x509_sign register: x509_sign
- name: "Install the signed certificate for {{ item.0.credentials.name }}/{{ item.0.mode }}" - name: "Install the signed internal PKI certificates"
copy: copy:
dest: "/etc/credentials/x509/{{ item.0.credentials.name }}/{{ item.0.mode }}/cert.pem" dest: "/etc/credentials/x509/{{ item.0.credentials.name }}/{{ item.0.mode }}/cert.pem"
content: "{{ item.1.cert }}" content: "{{ item.1.cert }}"
...@@ -57,7 +57,7 @@ ...@@ -57,7 +57,7 @@
when: "item.1.changed" when: "item.1.changed"
loop: "{{ float_host_service_credentials_certs | zip(x509_sign.results) | list }}" loop: "{{ float_host_service_credentials_certs | zip(x509_sign.results) | list }}"
- name: Set permissions on the private key - name: "Set permissions on the private keys"
file: file:
path: "/etc/credentials/x509/{{ item.credentials.name }}/{{ item.mode }}/private_key.pem" path: "/etc/credentials/x509/{{ item.credentials.name }}/{{ item.mode }}/private_key.pem"
group: "{{ item.credentials.name }}-credentials" group: "{{ item.credentials.name }}-credentials"
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment