|
Packit Service |
0a38ef |
---
|
|
Packit Service |
0a38ef |
- name: Test user certmapdata
|
|
Packit Service |
0a38ef |
hosts: ipaserver
|
|
Packit Service |
0a38ef |
become: true
|
|
Packit Service |
0a38ef |
gather_facts: false
|
|
Packit Service |
0a38ef |
|
|
Packit Service |
0a38ef |
tasks:
|
|
Packit Service |
a166ed |
- name: Generate self-signed certificates.
|
|
Packit Service |
a166ed |
shell:
|
|
Packit Service |
a166ed |
cmd: |
|
|
Packit Service |
a166ed |
openssl req -x509 -newkey rsa:2048 -days 365 -nodes -keyout "private{{ item }}.key" -out "cert{{ item }}.pem" -subj '/CN=test'
|
|
Packit Service |
a166ed |
openssl x509 -outform der -in "cert{{ item }}.pem" -out "cert{{ item }}.der"
|
|
Packit Service |
a166ed |
base64 "cert{{ item }}.der" -w5000 > "cert{{ item }}.b64"
|
|
Packit Service |
a166ed |
with_items: [1, 2, 3]
|
|
Packit Service |
a166ed |
become: no
|
|
Packit Service |
a166ed |
delegate_to: localhost
|
|
Packit Service |
a166ed |
|
|
Packit Service |
0a38ef |
- name: User test absent
|
|
Packit Service |
0a38ef |
ipauser:
|
|
Packit Service |
0a38ef |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0a38ef |
users:
|
|
Packit Service |
0a38ef |
- name: test
|
|
Packit Service |
0a38ef |
state: absent
|
|
Packit Service |
0a38ef |
|
|
Packit Service |
0a38ef |
- name: User test present
|
|
Packit Service |
0a38ef |
ipauser:
|
|
Packit Service |
0a38ef |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0a38ef |
users:
|
|
Packit Service |
0a38ef |
- name: test
|
|
Packit Service |
0a38ef |
first: test
|
|
Packit Service |
0a38ef |
last: test
|
|
Packit Service |
0a38ef |
register: result
|
|
Packit Service |
0a38ef |
failed_when: not result.changed
|
|
Packit Service |
0a38ef |
|
|
Packit Service |
0a38ef |
- name: User test certmapdata members present
|
|
Packit Service |
0a38ef |
ipauser:
|
|
Packit Service |
0a38ef |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0a38ef |
users:
|
|
Packit Service |
0a38ef |
- name: test
|
|
Packit Service |
0a38ef |
certmapdata:
|
|
Packit Service |
a166ed |
- certificate: "{{ lookup('file', 'cert1.b64', rstrip=False) }}"
|
|
Packit Service |
a166ed |
- certificate: "{{ lookup('file', 'cert2.b64', rstrip=False) }}"
|
|
Packit Service |
a166ed |
- certificate: "{{ lookup('file', 'cert3.b64', rstrip=False) }}"
|
|
Packit Service |
0a38ef |
action: member
|
|
Packit Service |
0a38ef |
register: result
|
|
Packit Service |
0a38ef |
failed_when: not result.changed
|
|
Packit Service |
0a38ef |
|
|
Packit Service |
0a38ef |
- name: User test certmapdata members present again
|
|
Packit Service |
0a38ef |
ipauser:
|
|
Packit Service |
0a38ef |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0a38ef |
users:
|
|
Packit Service |
0a38ef |
- name: test
|
|
Packit Service |
0a38ef |
certmapdata:
|
|
Packit Service |
a166ed |
- certificate: "{{ lookup('file', 'cert1.b64', rstrip=False) }}"
|
|
Packit Service |
a166ed |
- certificate: "{{ lookup('file', 'cert2.b64', rstrip=False) }}"
|
|
Packit Service |
a166ed |
- certificate: "{{ lookup('file', 'cert3.b64', rstrip=False) }}"
|
|
Packit Service |
0a38ef |
action: member
|
|
Packit Service |
0a38ef |
register: result
|
|
Packit Service |
0a38ef |
failed_when: result.changed
|
|
Packit Service |
0a38ef |
|
|
Packit Service |
0a38ef |
- name: User test certmapdata members absent
|
|
Packit Service |
0a38ef |
ipauser:
|
|
Packit Service |
0a38ef |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0a38ef |
users:
|
|
Packit Service |
0a38ef |
- name: test
|
|
Packit Service |
0a38ef |
certmapdata:
|
|
Packit Service |
a166ed |
- certificate: "{{ lookup('file', 'cert1.b64', rstrip=False) }}"
|
|
Packit Service |
a166ed |
- certificate: "{{ lookup('file', 'cert2.b64', rstrip=False) }}"
|
|
Packit Service |
a166ed |
- certificate: "{{ lookup('file', 'cert3.b64', rstrip=False) }}"
|
|
Packit Service |
0a38ef |
action: member
|
|
Packit Service |
0a38ef |
state: absent
|
|
Packit Service |
0a38ef |
register: result
|
|
Packit Service |
0a38ef |
failed_when: not result.changed
|
|
Packit Service |
0a38ef |
|
|
Packit Service |
0a38ef |
- name: User test certmapdata members absent again
|
|
Packit Service |
0a38ef |
ipauser:
|
|
Packit Service |
0a38ef |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0a38ef |
users:
|
|
Packit Service |
0a38ef |
- name: test
|
|
Packit Service |
0a38ef |
certmapdata:
|
|
Packit Service |
a166ed |
- certificate: "{{ lookup('file', 'cert1.b64', rstrip=False) }}"
|
|
Packit Service |
a166ed |
- certificate: "{{ lookup('file', 'cert2.b64', rstrip=False) }}"
|
|
Packit Service |
a166ed |
- certificate: "{{ lookup('file', 'cert3.b64', rstrip=False) }}"
|
|
Packit Service |
0a38ef |
action: member
|
|
Packit Service |
0a38ef |
state: absent
|
|
Packit Service |
0a38ef |
register: result
|
|
Packit Service |
0a38ef |
failed_when: result.changed
|
|
Packit Service |
0a38ef |
|
|
Packit Service |
0a38ef |
- name: User test certmapdata members present
|
|
Packit Service |
0a38ef |
ipauser:
|
|
Packit Service |
0a38ef |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0a38ef |
users:
|
|
Packit Service |
0a38ef |
- name: test
|
|
Packit Service |
0a38ef |
certmapdata:
|
|
Packit Service |
0a38ef |
- issuer: CN=issuer1
|
|
Packit Service |
0a38ef |
subject: CN=subject1
|
|
Packit Service |
0a38ef |
- issuer: CN=issuer2
|
|
Packit Service |
0a38ef |
subject: CN=subject2
|
|
Packit Service |
0a38ef |
- issuer: CN=issuer3
|
|
Packit Service |
0a38ef |
subject: CN=subject3
|
|
Packit Service |
0a38ef |
action: member
|
|
Packit Service |
0a38ef |
register: result
|
|
Packit Service |
0a38ef |
failed_when: not result.changed
|
|
Packit Service |
0a38ef |
|
|
Packit Service |
0a38ef |
- name: User test certmapdata members present again
|
|
Packit Service |
0a38ef |
ipauser:
|
|
Packit Service |
0a38ef |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0a38ef |
users:
|
|
Packit Service |
0a38ef |
- name: test
|
|
Packit Service |
0a38ef |
certmapdata:
|
|
Packit Service |
0a38ef |
- issuer: CN=issuer1
|
|
Packit Service |
0a38ef |
subject: CN=subject1
|
|
Packit Service |
0a38ef |
- issuer: CN=issuer2
|
|
Packit Service |
0a38ef |
subject: CN=subject2
|
|
Packit Service |
0a38ef |
- issuer: CN=issuer3
|
|
Packit Service |
0a38ef |
subject: CN=subject3
|
|
Packit Service |
0a38ef |
action: member
|
|
Packit Service |
0a38ef |
register: result
|
|
Packit Service |
0a38ef |
failed_when: result.changed
|
|
Packit Service |
0a38ef |
|
|
Packit Service |
0a38ef |
- name: User test certmapdata members absent
|
|
Packit Service |
0a38ef |
ipauser:
|
|
Packit Service |
0a38ef |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0a38ef |
users:
|
|
Packit Service |
0a38ef |
- name: test
|
|
Packit Service |
0a38ef |
certmapdata:
|
|
Packit Service |
0a38ef |
- issuer: CN=issuer1
|
|
Packit Service |
0a38ef |
subject: CN=subject1
|
|
Packit Service |
0a38ef |
- issuer: CN=issuer2
|
|
Packit Service |
0a38ef |
subject: CN=subject2
|
|
Packit Service |
0a38ef |
- issuer: CN=issuer3
|
|
Packit Service |
0a38ef |
subject: CN=subject3
|
|
Packit Service |
0a38ef |
action: member
|
|
Packit Service |
0a38ef |
state: absent
|
|
Packit Service |
0a38ef |
register: result
|
|
Packit Service |
0a38ef |
failed_when: not result.changed
|
|
Packit Service |
0a38ef |
|
|
Packit Service |
0a38ef |
- name: User test certmapdata members absent again
|
|
Packit Service |
0a38ef |
ipauser:
|
|
Packit Service |
0a38ef |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0a38ef |
users:
|
|
Packit Service |
0a38ef |
- name: test
|
|
Packit Service |
0a38ef |
certmapdata:
|
|
Packit Service |
0a38ef |
- issuer: CN=issuer1
|
|
Packit Service |
0a38ef |
subject: CN=subject1
|
|
Packit Service |
0a38ef |
- issuer: CN=issuer2
|
|
Packit Service |
0a38ef |
subject: CN=subject2
|
|
Packit Service |
0a38ef |
- issuer: CN=issuer3
|
|
Packit Service |
0a38ef |
subject: CN=subject3
|
|
Packit Service |
0a38ef |
action: member
|
|
Packit Service |
0a38ef |
state: absent
|
|
Packit Service |
0a38ef |
register: result
|
|
Packit Service |
0a38ef |
failed_when: result.changed
|
|
Packit Service |
0a38ef |
|
|
Packit Service |
0a38ef |
- name: User test absent
|
|
Packit Service |
0a38ef |
ipauser:
|
|
Packit Service |
0a38ef |
ipaadmin_password: SomeADMINpassword
|
|
Packit Service |
0a38ef |
users:
|
|
Packit Service |
0a38ef |
- name: test
|
|
Packit Service |
0a38ef |
state: absent
|
|
Packit Service |
0a38ef |
register: result
|
|
Packit Service |
0a38ef |
failed_when: not result.changed
|
|
Packit Service |
a166ed |
|
|
Packit Service |
a166ed |
- name: Remove certificate files.
|
|
Packit Service |
a166ed |
shell:
|
|
Packit Service |
a166ed |
cmd: rm -f "private{{ item }}.key" "cert{{ item }}.pem" "cert{{ item }}.der" "cert{{ item }}.b64"
|
|
Packit Service |
a166ed |
with_items: [1, 2, 3]
|
|
Packit Service |
a166ed |
become: no
|
|
Packit Service |
a166ed |
delegate_to: localhost
|
|
Packit Service |
a166ed |
args:
|
|
Packit Service |
a166ed |
warn: no # suppres warning for not using the `file` module.
|