30 lines
915 B
YAML
30 lines
915 B
YAML
---
|
|
|
|
- name: Create cafile directory
|
|
file:
|
|
path: "/var/tmp/cafile"
|
|
state: directory
|
|
- name: Get cfssl from github
|
|
shell: go get -u github.com/cloudflare/cfssl/cmd/...
|
|
- name:
|
|
template:
|
|
src: "{{ item }}.j2"
|
|
dest: "/var/tmp/cafile/{{ item }}"
|
|
with_items:
|
|
- ca-csr.json
|
|
- ca-config.json
|
|
- req-csr.json
|
|
- name: Generate CA certificate
|
|
shell: cfssl genkey -initca ca-csr.json | cfssljson -bare ca
|
|
args:
|
|
chdir: /var/tmp/cafile
|
|
- name: Generate certificate and private key with CA
|
|
shell: cfssl gencert -ca ca.pem -ca-key ca-key.pem -config ca-config.json req-csr.json | cfssljson -bare {{ item }}
|
|
args:
|
|
chdir: /var/tmp/cafile
|
|
with_items:
|
|
- "{{ cert_names }}"
|
|
- name: Copy needed certificates and private keys to destination
|
|
shell: cp -f /var/tmp/cafile/{{ item.src }} {{ src_dir }}/integration/fixtures/{{ item.dst }}
|
|
with_items:
|
|
- "{{ cert_srcs_dsts }}"
|