From 8f1b3cf66a73ce3a71990b34b06952d9f3b2cfc7 Mon Sep 17 00:00:00 2001
From: Bertrand Lanson <bertrand.lanson@protonmail.com>
Date: Sat, 17 Aug 2024 14:07:31 +0200
Subject: [PATCH] fix: renew should cascade

---
 roles/hashistack_ca/tasks/renew/renew_intermediate.yml | 9 +++++++++
 roles/hashistack_ca/tasks/renew/renew_root.yml         | 2 +-
 2 files changed, 10 insertions(+), 1 deletion(-)

diff --git a/roles/hashistack_ca/tasks/renew/renew_intermediate.yml b/roles/hashistack_ca/tasks/renew/renew_intermediate.yml
index 4b56a1b..fadb858 100644
--- a/roles/hashistack_ca/tasks/renew/renew_intermediate.yml
+++ b/roles/hashistack_ca/tasks/renew/renew_intermediate.yml
@@ -69,3 +69,12 @@
 
     - name: "Intermediate CA | Generate new intermediate CA if backups were successful"
       ansible.builtin.include_tasks: ../generate/generate_intermediate.yml
+
+    - name: "Intermediate CA | Generate new consul leaf certificates"
+      ansible.builtin.include_tasks: ../renew/renew_consul.yml
+
+    - name: "Intermediate CA | Generate new nomad leaf certificates"
+      ansible.builtin.include_tasks: ../renew/renew_nomad.yml
+
+    - name: "Intermediate CA | Generate new vault leaf certificates"
+      ansible.builtin.include_tasks: ../renew/renew_vault.yml
diff --git a/roles/hashistack_ca/tasks/renew/renew_root.yml b/roles/hashistack_ca/tasks/renew/renew_root.yml
index 9f0ca63..127046a 100644
--- a/roles/hashistack_ca/tasks/renew/renew_root.yml
+++ b/roles/hashistack_ca/tasks/renew/renew_root.yml
@@ -55,4 +55,4 @@
       ansible.builtin.include_tasks: ../generate/generate_root.yml
 
     - name: "Root CA | Generate new intermediate CA"
-      ansible.builtin.include_tasks: ../generate/generate_intermediate.yml
+      ansible.builtin.include_tasks: ../renew/renew_intermediate.yml