Skip to content
Snippets Groups Projects
Commit 368bbc57 authored by Thomas Schneider's avatar Thomas Schneider
Browse files

Fix CA certificate installation

parent 85b1a98b
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
branding/handlers/main.yml
+ 3
0
View file @ 368bbc57
...@@ -2,3 +2,6 @@ ...@@ -2,3 +2,6 @@
- name: update apt cache - name: update apt cache
apt: update_cache=yes apt: update_cache=yes
- name: update CA certificates
command: /usr/sbin/update-ca-certificates
branding/tasks/main.yml
+ 16
2
View file @ 368bbc57
...@@ -43,7 +43,7 @@ ...@@ -43,7 +43,7 @@
- name: ensure dir for CA certs exisits - name: ensure dir for CA certs exisits
file: file:
path: /etc/ssl/certs path: /usr/local/share/ca-certificates
state: directory state: directory
owner: root owner: root
group: root group: root
...@@ -56,12 +56,26 @@ ...@@ -56,12 +56,26 @@
- name: ensure deployment of CA certificates - name: ensure deployment of CA certificates
copy: copy:
src: "{{ item }}" src: "{{ item }}"
dest: "/etc/ssl/certs/{{ item|basename }}" dest: "/usr/local/share/ca-certificates/{{ item|basename }}"
owner: root owner: root
group: root group: root
mode: '0644' mode: '0644'
with_items: "{{ branding_cacerts }}" with_items: "{{ branding_cacerts }}"
when: branding_cacerts is defined when: branding_cacerts is defined
notify: update CA certificates
tags:
- branding
- tls
- name: remove CA certificates with broken path
file:
path: "/etc/ssl/certs/{{ item }}"
state: absent
notify: update CA certificates
with_items:
- rwth_chain.pem
- rwth_chain_g2.pem
- asta_ca.pem
tags: tags:
- branding - branding
- tls - tls
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment