Startseite Erkunden Hilfe
Registrieren Anmelden
shixiong
/
okd
1
0
Fork 0
Dateien Issues 0 Pull-Requests 0 Wiki
Struktur: 6154f7d498
Branches Tags
okd
/
roles
/
openshift_aws
/
tasks
/
iam_cert.yml

iam_cert.yml 1.1 KB
Verlauf Originalformat

1234567891011121314151617181920212223242526272829303132333435 
  1. ---
    2. 

  2. - name: upload certificates to AWS IAM
    3. 

  3.   iam_cert23:
    4. 

  4.     state: present
    5. 

  5.     name: "{{ openshift_aws_iam_cert_name }}"
    6. 

  6.     cert: "{{ openshift_aws_iam_cert_path }}"
    7. 

  7.     key: "{{ openshift_aws_iam_cert_key_path }}"
    8. 

  8.     cert_chain: "{{ openshift_aws_iam_cert_chain_path | default(omit) }}"
    9. 

  9.   register: elb_cert_chain
    10. 

  10.   failed_when:
    11. 

  11.   - "'failed' in elb_cert_chain"
    12. 

  12.   - elb_cert_chain.failed
    13. 

  13.   - "'msg' in elb_cert_chain"
    14. 

  14.   - "'already exists and has a different certificate body' in elb_cert_chain.msg or 'BotoServerError' in elb_cert_chain.msg or 'Traceback' in elb_cert_chain.msg.module_stderr"
    15. 

  15.   when:
    16. 

  16.   - openshift_aws_create_iam_cert | bool
    17. 

  17.   - openshift_aws_iam_cert_path != ''
    18. 

  18.   - openshift_aws_iam_cert_key_path != ''
    19. 

  19.   - openshift_aws_elb_cert_arn == ''
    20. 

  20. 

  21. - debug: msg="{{ elb_cert_chain }}"
    22. 

  22. 

  23. - name: set_fact openshift_aws_elb_cert_arn
    24. 

  24.   set_fact:
    25. 

  25.     openshift_aws_elb_cert_arn: "{{ elb_cert_chain.arn }}"
    26. 

  26.   when:
    27. 

  27.   - openshift_aws_create_iam_cert | bool
    28. 

  28.   - openshift_aws_iam_cert_path != ''
    29. 

  29.   - openshift_aws_iam_cert_key_path != ''
    30. 

  30.   - openshift_aws_elb_cert_arn == ''
    31. 

  31. 

  32. - name: wait for cert to propagate
    33. 

  33.   pause:
    34. 

  34.     seconds: 5
    35. 

  35.   when: elb_cert_chain.changed
    36.