renew_vault_certificates/defaults/main.yml

20 lines
848 B
YAML
Raw Normal View History

2023-04-16 20:26:14 +00:00
---
# defaults file for renew_vault_certificates
renew_vault_certificates_config_dir: /etc/consul-template.d/vault
renew_vault_certificates_vault_user: vault
renew_vault_certificates_vault_group: vault
renew_vault_certificates_vault_addr: "https://127.0.0.1:8200"
renew_vault_certificates_vault_token: mysupersecretvaulttokenthatyoushouldchange
renew_vault_certificates_vault_token_unwrap: false
renew_vault_certificates_vault_token_renew: true
renew_vault_certificates_cert_dest: /opt/vault/tls/cert.pem
renew_vault_certificates_key_dest: /opt/vault/tls/key.pem
renew_vault_certificates_info:
issuer_path: pki/issue/your-issuer
2023-04-17 21:20:12 +00:00
common_name: vault01.example.com
2023-04-16 20:26:14 +00:00
ttl: 90d
include_localhost: true
include_consul_service: false
renew_vault_certificates_consul_service_name: vault.service.consul
renew_vault_certificates_start_service: false