Home Explore Help
Register Sign In
shixiong
/
okd
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: b579a4acfa
Branches Tags
okd
/
roles
/
openshift_logging
/
tasks
/
generate_pkcs12.yaml

generate_pkcs12.yaml 896 B
History Raw

123456789101112131415161718192021222324 
  1. ---
    2. 

  2. - debug: msg="certs are {{chain_certs}} and oid is {{oid}}"
    3. 

  3.   when: chain_certs is defined and oid is defined
    4. 

  4. 

  5. - debug: msg="certs are {{chain_certs}}"
    6. 

  6.   when: chain_certs is defined and oid is undefined
    7. 

  7. 

  8. - name: Build extensions with certs
    9. 

  9.   shell: echo "{{chain_certs}}{{ (oid) | ternary(',oid=1.2.3.4.5.5','') }}"
    10. 

  10.   register: cert_ext
    11. 

  11.   when: chain_certs is defined and oid is defined
    12. 

  12. 

  13. - debug: msg="extensions are {{cert_ext.stdout}}"
    14. 

  14.   when: cert_ext.stdout is defined
    15. 

  15. 

  16. - include: generate_pems.yaml
    17. 

  17. 

  18. - local_action: stat path="{{mktemp.stdout}}/{{component}}.pkcs12"
    19. 

  19.   register: pkcs_file
    20. 

  20.   become: no
    21. 

  21. 

  22. - name: Generating pkcs12 chain for {{component}}
    23. 

  23.   command: openssl pkcs12 -export -out {{generated_certs_dir}}/{{component}}.pkcs12 -inkey {{generated_certs_dir}}/{{component}}.key -in {{generated_certs_dir}}/{{component}}.crt -password pass:pass
    24. 

  24.   when: not pkcs_file.stat.exists
    25.