--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/contrib/provision/roles/certs/tasks/main.yml Sat Mar 19 00:45:41 2016 +0800
+- name: Install packages
+ apt: pkg={{ item }} state=present
+- name: Make sure {{ path }} exists
+ file: path='{{ path }}' state=directory owner=root group=ssl-cert mode=0710
+- name: Make sure domain directories exist
+ file: path='{{ path }}/{{ item }}' state=directory owner=root group=ssl-cert mode=0710
+ with_items: '{{ selfsigned }}'
+- name: Generate private keys
+ -out '{{ path }}/{{ item }}/clean.key'
+ creates: '{{ path }}/{{ item }}/clean.key'
+ with_items: '{{ selfsigned }}'
+- name: Set permissions for private keys
+ file: path='{{ path }}/{{ item }}/clean.key' state=file owner=root group=ssl-cert mode=0640
+ with_items: '{{ selfsigned }}'
+- name: Generate self-signed certificates
+ -key '{{ path }}/{{ item }}/clean.key'
+ -out '{{ path }}/{{ item }}/selfsigned.pem'
+ creates: '{{ path }}/{{ item }}/selfsigned.pem'
+ with_items: '{{ selfsigned }}'
+- name: Set permissions for self-signed certificates
+ file: path='{{ path }}/{{ item }}/selfsigned.pem' state=file owner=root group=ssl-cert mode=0640
+ with_items: '{{ selfsigned }}'