import_vault_root_ca/tasks/import.yml

19 lines
757 B
YAML
Raw Normal View History

2023-05-22 18:23:57 +00:00
---
# task/import file for import_vault_root_ca
- name: "Download certificate file"
ansible.builtin.get_url:
url: "{{ item.url }}"
validate_certs: false
2023-05-24 21:00:18 +00:00
force: "{{ import_vault_root_ca_certificate_force_download }}"
dest: "{{ import_vault_root_ca_cert_dir }}/{{ item.cert_name }}.crt"
mode: '0644'
2023-05-22 18:23:57 +00:00
loop: "{{ import_vault_root_ca_certificate_list }}"
- name: "Make sure certificate is in PEM format"
ansible.builtin.command:
cmd: "openssl x509 -in /tmp/{{ item.cert_name }}.tmp -out {{ import_vault_root_ca_cert_dir }}/{{ item.cert_name }}.crt -outform pem"
creates: "{{ import_vault_root_ca_cert_dir }}/{{ item.cert_name }}.crt"
loop: "{{ import_vault_root_ca_certificate_list }}"
notify:
- update-ca-certificates