renew_vault_certificates/templates/vault_config.hcl.j2

vault {
  address      = "{{ renew_vault_certificates_vault_addr }}"
  token        = "{{ renew_vault_certificates_vault_token }}"
  unwrap_token = {{ renew_vault_certificates_vault_token_unwrap|lower }}
  renew_token  = {{ renew_vault_certificates_vault_token_renew|lower }}
}

template {
  source      = "{{ renew_vault_certificates_config_dir }}/templates/vault_cert.pem.tpl"
  destination = "{{ renew_vault_certificates_cert_dest }}"
  perms       = 0700
  user        = "{{ renew_vault_certificates_vault_user }}"
  group       = "{{ renew_vault_certificates_vault_group }}"
  command     = "sh -c 'echo \"$(date) Update certificate and key file for {{ renew_vault_certificates_info['common_name'] }}\" && pkill -SIGHUP vault '"
}

template {
  source      = "{{ renew_vault_certificates_config_dir }}/templates/vault_key.pem.tpl"
  destination = "{{ renew_vault_certificates_key_dest }}"
  perms       = 0700
  user        = "{{ renew_vault_certificates_vault_user }}"
  group       = "{{ renew_vault_certificates_vault_group }}"
  command     = "sh -c 'echo \"$(date) Update certificate and key file for {{ renew_vault_certificates_info['common_name'] }}\" && pkill -SIGHUP vault '"
}
good start 2023-04-16 20:26:14 +00:00			`vault {`
			`address = "{{ renew_vault_certificates_vault_addr }}"`
the token commited previously was testing stuff, nothing bad 2023-04-16 20:30:59 +00:00			`token = "{{ renew_vault_certificates_vault_token }}"`
			`unwrap_token = {{ renew_vault_certificates_vault_token_unwrap\|lower }}`
			`renew_token = {{ renew_vault_certificates_vault_token_renew\|lower }}`
good start 2023-04-16 20:26:14 +00:00			`}`

			`template {`
fixed path for config file 2023-04-26 16:08:31 +00:00			`source = "{{ renew_vault_certificates_config_dir }}/templates/vault_cert.pem.tpl"`
added a few configs 2023-04-16 22:31:28 +00:00			`destination = "{{ renew_vault_certificates_cert_dest }}"`
good start 2023-04-16 20:26:14 +00:00			`perms = 0700`
added a few configs 2023-04-16 22:31:28 +00:00			`user = "{{ renew_vault_certificates_vault_user }}"`
			`group = "{{ renew_vault_certificates_vault_group }}"`
vault_config template 2023-04-16 22:33:03 +00:00			`command = "sh -c 'echo \"$(date) Update certificate and key file for {{ renew_vault_certificates_info['common_name'] }}\" && pkill -SIGHUP vault '"`
good start 2023-04-16 20:26:14 +00:00			`}`

			`template {`
fixed path for config file 2023-04-26 16:16:58 +00:00			`source = "{{ renew_vault_certificates_config_dir }}/templates/vault_key.pem.tpl"`
added a few configs 2023-04-16 22:31:28 +00:00			`destination = "{{ renew_vault_certificates_key_dest }}"`
good start 2023-04-16 20:26:14 +00:00			`perms = 0700`
added a few configs 2023-04-16 22:31:28 +00:00			`user = "{{ renew_vault_certificates_vault_user }}"`
			`group = "{{ renew_vault_certificates_vault_group }}"`
vault_config template 2023-04-16 22:33:03 +00:00			`command = "sh -c 'echo \"$(date) Update certificate and key file for {{ renew_vault_certificates_info['common_name'] }}\" && pkill -SIGHUP vault '"`
good start 2023-04-16 20:26:14 +00:00			`}`