---

- name: Create cafile directory
  file:
    path: "/var/tmp/cafile"
    state: directory
- name: Get cfssl from github
  shell: go get -u github.com/cloudflare/cfssl/cmd/...
- name:
  template:
    src: "{{ item }}.j2"
    dest: "/var/tmp/cafile/{{ item }}"
  with_items:
    - ca-csr.json
    - ca-config.json
    - req-csr.json
- name: Generate CA certificate 
  shell: cfssl genkey -initca ca-csr.json | cfssljson -bare ca
  args:
    chdir: /var/tmp/cafile
- name: Generate certificate and private key with CA
  shell: cfssl gencert -ca ca.pem -ca-key ca-key.pem -config ca-config.json req-csr.json | cfssljson -bare {{ item }}
  args:
    chdir: /var/tmp/cafile
  with_items:
    - "{{ cert_names }}"
- name: Copy needed certificates and private keys to destination
  shell: cp -f /var/tmp/cafile/{{ item.src }} {{ src_dir }}/integration/fixtures/{{ item.dst }}
  with_items:
    - "{{ cert_srcs_dsts }}"