- ---
- - name: generate ca certificate chain
- shell: >
- {{ openshift.common.admin_binary }} ca create-signer-cert
- --config={{ mktemp.stdout }}/admin.kubeconfig
- --key='{{ openshift_metrics_certs_dir }}/ca.key'
- --cert='{{ openshift_metrics_certs_dir }}/ca.crt'
- --serial='{{ openshift_metrics_certs_dir }}/ca.serial.txt'
- --name="metrics-signer@$(date +%s)"
- when: not '{{ openshift_metrics_certs_dir }}/ca.key' | exists
- - include: generate_hawkular_certificates.yaml
|
