Tree - source-git/ansible-freeipa

source-git / ansible-freeipa

Blame tests/ca-less/install_replica_without_ca.yml

Blob History Raw

Packit Service	0a38ef	`---`
Packit Service	0a38ef	`- name: Generate certificates`
Packit Service	0a38ef	`hosts: localhost`
Packit Service	0a38ef	`gather_facts: false`
Packit Service	0a38ef
Packit Service	0a38ef	`tasks:`
Packit Service	0a38ef	`- name: Run generate-certificates.sh`
Packit Service	0a38ef	`command: >`
Packit Service	0a38ef	`/bin/bash`
Packit Service	0a38ef	`generate-certificates.sh create`
Packit Service	0a38ef	`"{{ groups.ipareplicas[0] }}"`
Packit Service	0a38ef	`"{{ ipareplica_domain \| default(groups.ipareplicas[0].split('.')[1:] \| join ('.')) }}"`
Packit Service	0a38ef	`args:`
Packit Service	0a38ef	`chdir: "{{ playbook_dir }}"`
Packit Service	0a38ef
Packit Service	0a38ef	`- name: Test ipareplicas installation without CA`
Packit Service	0a38ef	`hosts: ipareplicas`
Packit Service	0a38ef	`become: true`
Packit Service	0a38ef
Packit Service	0a38ef	`vars:`
Packit Service	0a38ef	`# Root CA certificate`
Packit Service	0a38ef	`ipareplica_ca_cert_files:`
Packit Service	0a38ef	`- /root/ca-less-test/ca.crt`
Packit Service	0a38ef	`# Directory server certificates`
Packit Service	0a38ef	`ipareplica_dirsrv_cert_name: dirsrv-cert`
Packit Service	0a38ef	`ipareplica_dirsrv_cert_files:`
Packit Service	0a38ef	`- /root/ca-less-test/dirsrv.p12`
Packit Service	0a38ef	`ipareplica_dirsrv_pin: SomePKCS12password`
Packit Service	0a38ef	`# Apache certificates`
Packit Service	0a38ef	`ipareplica_http_cert_name: httpd-cert`
Packit Service	0a38ef	`ipareplica_http_cert_files:`
Packit Service	0a38ef	`- /root/ca-less-test/httpd.p12`
Packit Service	0a38ef	`ipareplica_http_pin: SomePKCS12password`
Packit Service	0a38ef	`# PKINIT configuration`
Packit Service	0a38ef	`ipareplica_no_pkinit: no`
Packit Service	0a38ef	`ipareplica_pkinit_cert_name: pkinit-cert`
Packit Service	0a38ef	`ipareplica_pkinit_cert_files:`
Packit Service	0a38ef	`- /root/ca-less-test/pkinit.p12`
Packit Service	0a38ef	`ipareplica_pkinit_pin: SomePKCS12password`
Packit Service	0a38ef
Packit Service	0a38ef	`pre_tasks:`
Packit Service	0a38ef	`- name: Remove "/root/ca-less-test"`
Packit Service	0a38ef	`file:`
Packit Service	0a38ef	`path: "/root/ca-less-test"`
Packit Service	0a38ef	`state: absent`
Packit Service	0a38ef
Packit Service	0a38ef	`- name: Generate "/root/ca-less-test"`
Packit Service	0a38ef	`file:`
Packit Service	0a38ef	`path: "/root/ca-less-test"`
Packit Service	0a38ef	`state: directory`
Packit Service	0a38ef
Packit Service	0a38ef	`- name: Copy CA certificate`
Packit Service	0a38ef	`copy:`
Packit Service	0a38ef	`src: "{{ playbook_dir }}/certificates/root-ca/cert.pem"`
Packit Service	0a38ef	`dest: "/root/ca-less-test/ca.crt"`
Packit Service	0a38ef	`owner: root`
Packit Service	0a38ef	`group: root`
Packit Service	0a38ef	`mode: "0644"`
Packit Service	0a38ef
Packit Service	0a38ef	`- name: Copy p12 certificates`
Packit Service	0a38ef	`copy:`
Packit Service	0a38ef	`src: "{{ playbook_dir }}/certificates/{{ item }}/{{ groups.ipareplicas[0] }}/cert.p12"`
Packit Service	0a38ef	`dest: "/root/ca-less-test/{{ item }}.p12"`
Packit Service	0a38ef	`owner: root`
Packit Service	0a38ef	`group: root`
Packit Service	0a38ef	`mode: "0644"`
Packit Service	0a38ef	`with_items:`
Packit Service	0a38ef	`- dirsrv`
Packit Service	0a38ef	`- httpd`
Packit Service	0a38ef	`- pkinit`
Packit Service	0a38ef
Packit Service	0a38ef	`roles:`
Packit Service	0a38ef	`- role: ipareplica`
Packit Service	0a38ef	`state: present`
Packit Service	0a38ef
Packit Service	0a38ef	`post_tasks:`
Packit Service	0a38ef	`- name: Fix KDC certificate permissions`
Packit Service	0a38ef	`file:`
Packit Service	0a38ef	`path: /var/kerberos/krb5kdc/kdc.crt`
Packit Service	0a38ef	`owner: root`
Packit Service	0a38ef	`group: root`
Packit Service	0a38ef	`mode: '0644'`

source-git / ansible-freeipa

Source Code

Blame tests/ca-less/install_replica_without_ca.yml