[add] role:tlscert_existing

2023-12-14 09:56:19 +01:00 · 2023-12-14 09:56:19 +01:00 · 2f1cd74a79
commit 2f1cd74a79
parent 5274052b00
2 changed files with 39 additions and 0 deletions
--- a/ansible/roles/tlscert_existing/defaults/main.json
+++ b/ansible/roles/tlscert_existing/defaults/main.json
@ -0,0 +1,7 @@
+{
+	"var_tlscert_existing_key_path": "/tmp/key.pem",
+	"var_tlscert_existing_cert_path": "/tmp/cert.pem",
+	"var_tlscert_existing_domain_base": "example.org",
+	"var_tlscert_existing_domain_path": "foo",
+	"var_tlscert_existing_ssl_directory": "/etc/ssl"
+}
--- a/ansible/roles/tlscert_existing/tasks/main.json
+++ b/ansible/roles/tlscert_existing/tasks/main.json
@ -0,0 +1,32 @@
+[
+	{
+		"name": "directories",
+		"become": true,
+		"ansible.builtin.file": {
+			"state": "directory",
+			"path": "{{item}}"
+		},
+		"loop": [
+			"{{var_tlscert_existing_ssl_directory}}/private",
+			"{{var_tlscert_existing_ssl_directory}}/csr",
+			"{{var_tlscert_existing_ssl_directory}}/certs",
+			"{{var_tlscert_existing_ssl_directory}}/fullchains"
+		]
+	},
+	{
+		"name": "key",
+		"become": true,
+		"ansible.builtin.copy": {
+			"src": "{{var_tlscert_existing_key_path}}",
+			"dest": "{{var_tlscert_existing_ssl_directory}}/private/{{var_tlscert_existing_domain_path}}.{{var_tlscert_existing_domain_base}}.pem"
+		}
+	},
+	{
+		"name": "cert",
+		"become": true,
+		"ansible.builtin.copy": {
+			"src": "{{var_tlscert_existing_cert_path}}",
+			"dest": "{{var_tlscert_existing_ssl_directory}}/certs/{{var_tlscert_existing_domain_path}}.{{var_tlscert_existing_domain_base}}.pem"
+		}
+	}
+]