volker.raschek/ansible-role-certificate-authority
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Compare commits

base: volker.raschek:346f626460eb82c1086a433e9615a58af07286ca
Branches Tags
volker.raschek:master volker.raschek:renovate/actions
volker.raschek:0.2.2 volker.raschek:0.2.1 volker.raschek:0.2.0 volker.raschek:0.1.3 volker.raschek:0.1.2 volker.raschek:0.1.1 volker.raschek:0.1.0
..
compare: volker.raschek:0.1.3
Branches Tags
volker.raschek:renovate/actions volker.raschek:master
volker.raschek:0.2.2 volker.raschek:0.2.1 volker.raschek:0.2.0 volker.raschek:0.1.3 volker.raschek:0.1.2 volker.raschek:0.1.1 volker.raschek:0.1.0

4 Commits
346f626460 ... 0.1.3

Author SHA1 Message Date
Markus Pesch
c3fb49bbd4 fix(root_ca): set passphrase correctly
Some checks failed
Lint Markdown files / markdown-lint (push) Successful in 13s
Details
Ansible Linter / ansible-lint (push) Failing after 57s
Details
2025-07-31 11:56:27 +02:00
Markus Pesch
61b0a7c9ec fix: set cipher correctly
Some checks failed
Ansible Linter / ansible-lint (push) Failing after 59s
Details
Lint Markdown files / markdown-lint (push) Successful in 11s
Details
2025-07-31 09:53:01 +02:00
Markus Pesch
dbbaacdc69 fix(root_ca): set passphrase correctly
Some checks failed
Lint Markdown files / markdown-lint (push) Successful in 10s
Details
Ansible Linter / ansible-lint (push) Failing after 1m0s
Details
2025-07-31 09:49:12 +02:00
Markus Pesch
505f0450d4 fix(intermediate_ca): set passphrase correctly
Some checks failed
Lint Markdown files / markdown-lint (push) Has been cancelled
Details
Ansible Linter / ansible-lint (push) Has been cancelled
Details
2025-07-31 09:48:51 +02:00
6 changed files with 7 additions and 3 deletions
Expand all files Collapse all files

2
.gitea/workflows/ansible-linters.yaml
View File

@ -14,7 +14,7 @@ jobs:
steps: steps:
- uses: actions/checkout@v4 - uses: actions/checkout@v4
- name: Run ansible-lint - name: Run ansible-lint
uses: ansible/ansible-lint@v25.7.0 uses: ansible/ansible-lint@v25.6.1
with: with:
args: "--config-file .ansible-lint" args: "--config-file .ansible-lint"
setup_python: "true" setup_python: "true"

1
tasks/client_certificate_protected.yaml
View File

@ -5,6 +5,7 @@
path: "{{ certificate_authority_client_path }}/privkey.pem" path: "{{ certificate_authority_client_path }}/privkey.pem"
type: "{{ certificate_authority_client_tls_key_type }}" type: "{{ certificate_authority_client_tls_key_type }}"
passphrase: "{{ certificate_authority_client_tls_key_passphrase }}" passphrase: "{{ certificate_authority_client_tls_key_passphrase }}"
cipher: auto
- name: Create a certificate signing request (CSR) for client certificate without subject alternative names (SANs) - name: Create a certificate signing request (CSR) for client certificate without subject alternative names (SANs)
community.crypto.openssl_csr: community.crypto.openssl_csr:

2
tasks/intermediate_certificate_authority.yaml
View File

@ -16,7 +16,7 @@
certificate_authority_intermediate_ca_tls_key_passphrase | length <= 0 certificate_authority_intermediate_ca_tls_key_passphrase | length <= 0
- name: Create passphrase protected intermediate Certificate Authority (CA) - name: Create passphrase protected intermediate Certificate Authority (CA)
ansible.builtin.include_tasks: intermediate_certificate_authority_unprotected.yaml ansible.builtin.include_tasks: intermediate_certificate_authority_protected.yaml
when: certificate_authority_intermediate_ca_create is defined and when: certificate_authority_intermediate_ca_create is defined and
certificate_authority_intermediate_ca_create and certificate_authority_intermediate_ca_create and
certificate_authority_intermediate_ca_tls_key_passphrase is defined and certificate_authority_intermediate_ca_tls_key_passphrase is defined and

1
tasks/intermediate_certificate_authority_protected.yaml
View File

@ -5,6 +5,7 @@
passphrase: "{{ certificate_authority_intermediate_ca_tls_key_passphrase }}" passphrase: "{{ certificate_authority_intermediate_ca_tls_key_passphrase }}"
path: "{{ certificate_authority_intermediate_ca_path }}/privkey.pem" path: "{{ certificate_authority_intermediate_ca_path }}/privkey.pem"
type: "{{ certificate_authority_intermediate_ca_tls_key_type }}" type: "{{ certificate_authority_intermediate_ca_tls_key_type }}"
cipher: auto
- name: Create a certificate signing request (CSR) for intermediate CA - name: Create a certificate signing request (CSR) for intermediate CA
community.crypto.openssl_csr: community.crypto.openssl_csr:

2
tasks/root_certificate_authority.yaml
View File

@ -16,7 +16,7 @@
certificate_authority_root_ca_tls_key_passphrase | length <= 0 certificate_authority_root_ca_tls_key_passphrase | length <= 0
- name: Create passphrase protected root Certificate Authority (CA) - name: Create passphrase protected root Certificate Authority (CA)
ansible.builtin.include_tasks: root_certificate_authority_unprotected.yaml ansible.builtin.include_tasks: root_certificate_authority_protected.yaml
when: certificate_authority_root_ca_create is defined and when: certificate_authority_root_ca_create is defined and
certificate_authority_root_ca_create and certificate_authority_root_ca_create and
certificate_authority_root_ca_tls_key_passphrase is defined and certificate_authority_root_ca_tls_key_passphrase is defined and

2
tasks/root_certificate_authority_protected.yaml
View File

@ -5,6 +5,7 @@
passphrase: "{{ certificate_authority_root_ca_tls_key_passphrase }}" passphrase: "{{ certificate_authority_root_ca_tls_key_passphrase }}"
path: "{{ certificate_authority_root_ca_path }}/privkey.pem" path: "{{ certificate_authority_root_ca_path }}/privkey.pem"
type: "{{ certificate_authority_root_ca_tls_key_type }}" type: "{{ certificate_authority_root_ca_tls_key_type }}"
cipher: auto
- name: Create a certificate signing request (CSR) for root CA - name: Create a certificate signing request (CSR) for root CA
community.crypto.openssl_csr: community.crypto.openssl_csr:
@ -13,6 +14,7 @@
common_name: "{{ certificate_authority_root_ca_common_name }}" common_name: "{{ certificate_authority_root_ca_common_name }}"
path: "{{ certificate_authority_root_ca_path }}/cert-req.pem" path: "{{ certificate_authority_root_ca_path }}/cert-req.pem"
privatekey_path: "{{ certificate_authority_root_ca_path }}/privkey.pem" privatekey_path: "{{ certificate_authority_root_ca_path }}/privkey.pem"
privatekey_passphrase: "{{ certificate_authority_root_ca_tls_key_passphrase }}"
use_common_name_for_san: false use_common_name_for_san: false
- name: Create self-signed certificate for root CA - name: Create self-signed certificate for root CA