From 6c83964660f76400f02efa4de5b7775d122cf2ea Mon Sep 17 00:00:00 2001 From: Michal Zegan Date: Wed, 19 Dec 2018 11:20:51 +0100 Subject: Add ansible certificates role This role is used to generate and install certificates on instances, incl. root ca. Those certificates are used mainly to allow secure access to internal docker registry with proper certificate verification. Issue-ID: OOM-1551 Change-Id: I74782dd2938cb51da293f88483d5362981269196 Signed-off-by: Michal Zegan --- ansible/roles/certificates/tasks/upload_root_ca.yml | 10 ++++++++++ 1 file changed, 10 insertions(+) create mode 100644 ansible/roles/certificates/tasks/upload_root_ca.yml (limited to 'ansible/roles/certificates/tasks/upload_root_ca.yml') diff --git a/ansible/roles/certificates/tasks/upload_root_ca.yml b/ansible/roles/certificates/tasks/upload_root_ca.yml new file mode 100644 index 00000000..5a59d27b --- /dev/null +++ b/ansible/roles/certificates/tasks/upload_root_ca.yml @@ -0,0 +1,10 @@ +--- +- name: Copy root certificate + copy: + src: "/certs/rootCA.crt" + dest: /etc/pki/ca-trust/source/anchors/ + notify: Restart Docker + +- name: Extract root certificate + command: /usr/bin/update-ca-trust extract + notify: Restart Docker -- cgit 1.2.3-korg