Skip to content
Permalink
Browse files

move idp key and certiticate to conf

  • Loading branch information...
Paolo Greppi
Paolo Greppi committed Aug 9, 2018
1 parent f325a0e commit 771f1bd8a3b59633902bc9e3a5c7938b7b70e264
Showing with 2 additions and 2 deletions.
  1. +2 −2 ansible/roles/spid-testenv2/tasks/main.yml
@@ -23,13 +23,13 @@
dest: "{{ spid_testenv2_dir }}"

- name: generate the IDP certificate
command: openssl req -x509 -nodes -sha256 -days 365 -newkey rsa:2048 -subj "/C=IT/ST=Italy/L=Rome/O=testenv2/CN=${ansible_fqdn}" -keyout {{ spid_testenv2_dir }}/idp.key -out {{ spid_testenv2_dir }}/idp.crt
command: openssl req -x509 -nodes -sha256 -days 365 -newkey rsa:2048 -subj "/C=IT/ST=Italy/L=Rome/O=testenv2/CN=${ansible_fqdn}" -keyout {{ spid_testenv2_dir }}/conf/idp.key -out {{ spid_testenv2_dir }}/conf/idp.crt
args:
creates: /etc/nginx/ssl/server.crt

- name: make sure the non-privileged user can read the key
file:
path: "{{ spid_testenv2_dir }}/idp.key"
path: "{{ spid_testenv2_dir }}/conf/idp.key"
state: file
owner: "{{ spid_testenv2_user }}"

0 comments on commit 771f1bd

Please sign in to comment.
You can’t perform that action at this time.