iac/rproxy
3
0
Fork 0
Code Issues Pull Requests Packages Releases 9 Activity

HOTFIX remove tracking certs #40

Merged
mpavlov merged 1 commits from dev into master 2025-08-17 01:50:35 +03:00
Conversation 0 Commits 1 Files Changed 1 +9 -9
1 changed files with 9 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
roles/rproxy/tasks/repo.yml
View File

@@ -27,15 +27,6 @@
become_user: "{{ ansible_user }}" become_user: "{{ ansible_user }}"
ignore_errors: true ignore_errors: true
- name: Request certificate via ipa-getcert
ansible.builtin.command: >
ipa-getcert request
-f {{ rproxy_dir }}/certs/repo.crt
-k {{ rproxy_dir }}/certs/repo.key
-K HTTP/{{ ansible_facts['hostname'] }}.{{ ansible_facts['domain'] }}
-N CN={{ ansible_facts['hostname'] }}.{{ ansible_facts['domain'] }}
-F {{ rproxy_dir }}/certs/RootCA.crt
- name: Get all tracking certificates - name: Get all tracking certificates
ansible.builtin.shell: ansible.builtin.shell:
cmd: ipa-getcert list | grep "ID" | awk '{print $NF}' | tr -d "'\|:" cmd: ipa-getcert list | grep "ID" | awk '{print $NF}' | tr -d "'\|:"
@@ -47,6 +38,15 @@
loop: "{{ tracking_list.stdout_lines }}" loop: "{{ tracking_list.stdout_lines }}"
ignore_errors: true ignore_errors: true
- name: Request certificate via ipa-getcert
ansible.builtin.command: >
ipa-getcert request
-f {{ rproxy_dir }}/certs/repo.crt
-k {{ rproxy_dir }}/certs/repo.key
-K HTTP/{{ ansible_facts['hostname'] }}.{{ ansible_facts['domain'] }}
-N CN={{ ansible_facts['hostname'] }}.{{ ansible_facts['domain'] }}
-F {{ rproxy_dir }}/certs/RootCA.crt
- name: Wait for certificate to appear - name: Wait for certificate to appear
ansible.builtin.wait_for: ansible.builtin.wait_for:
path: "{{ rproxy_dir }}/certs/repo.crt" path: "{{ rproxy_dir }}/certs/repo.crt"