Commit 368bbc57 authored by Thomas Schneider's avatar Thomas Schneider
Browse files

Fix CA certificate installation

parent 85b1a98b
......@@ -2,3 +2,6 @@
- name: update apt cache
apt: update_cache=yes
- name: update CA certificates
command: /usr/sbin/update-ca-certificates
......@@ -43,7 +43,7 @@
- name: ensure dir for CA certs exisits
file:
path: /etc/ssl/certs
path: /usr/local/share/ca-certificates
state: directory
owner: root
group: root
......@@ -56,12 +56,26 @@
- name: ensure deployment of CA certificates
copy:
src: "{{ item }}"
dest: "/etc/ssl/certs/{{ item|basename }}"
dest: "/usr/local/share/ca-certificates/{{ item|basename }}"
owner: root
group: root
mode: '0644'
with_items: "{{ branding_cacerts }}"
when: branding_cacerts is defined
notify: update CA certificates
tags:
- branding
- tls
- name: remove CA certificates with broken path
file:
path: "/etc/ssl/certs/{{ item }}"
state: absent
notify: update CA certificates
with_items:
- rwth_chain.pem
- rwth_chain_g2.pem
- asta_ca.pem
tags:
- branding
- tls
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment