blob: 11f6832332e6053b09e93c147193b9140eb2cd20 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
|
---
- name: Unset cert_changed Flag
set_fact:
cert_changed: False
- name: Include distribution specific install tasks
include_tasks: '{{ ansible_facts.os_family | lower }}.yaml'
- name: Check for OpenSSL Private Key
community.crypto.openssl_privatekey_info:
path: '{{ key_path }}/{{ cert_name }}.key'
ignore_errors: yes
become: yes
register: key_check
- name: Create OpenSSL Private Key
community.crypto.openssl_privatekey:
path: '{{ key_path }}/{{ cert_name }}.key'
owner: '{{ owner }}'
group: '{{ group }}'
mode: '640'
become: yes
when: key_check.failed
- name: Check File Permissions for Key
file:
path: '{{ key_path }}/{{ cert_name }}.key'
state: file
owner: '{{ owner }}'
group: '{{ group }}'
mode: '640'
become: yes
when: not key_check.failed
- name: Trigger Cert Generation
include_tasks: selfsigned.yml
when: use_acme == false
- name: Trigger Cert Generation
include_tasks: letsencrypt.yml
when: use_acme == true
|