diff options
Diffstat (limited to 'ansible/roles/ansible-vvp-bootstrap/templates/openssl.config.j2')
-rwxr-xr-x | ansible/roles/ansible-vvp-bootstrap/templates/openssl.config.j2 | 73 |
1 files changed, 73 insertions, 0 deletions
diff --git a/ansible/roles/ansible-vvp-bootstrap/templates/openssl.config.j2 b/ansible/roles/ansible-vvp-bootstrap/templates/openssl.config.j2 new file mode 100755 index 0000000..3d44c5b --- /dev/null +++ b/ansible/roles/ansible-vvp-bootstrap/templates/openssl.config.j2 @@ -0,0 +1,73 @@ +# -*- encoding: utf-8 -*- +# ============LICENSE_START======================================================= +# org.onap.vvp/engagementmgr +# =================================================================== +# Copyright © 2017 AT&T Intellectual Property. All rights reserved. +# =================================================================== +# +# Unless otherwise specified, all software contained herein is licensed +# under the Apache License, Version 2.0 (the “License”); +# you may not use this software except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# +# +# Unless otherwise specified, all documentation contained herein is licensed +# under the Creative Commons License, Attribution 4.0 Intl. (the “License”); +# you may not use this documentation except in compliance with the License. +# You may obtain a copy of the License at +# +# https://creativecommons.org/licenses/by/4.0/ +# +# Unless required by applicable law or agreed to in writing, documentation +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# +# ============LICENSE_END============================================ +# +# ECOMP is a trademark and service mark of AT&T Intellectual Property. +[req] +req_extensions = v3_req +distinguished_name = req_distinguished_name + +[req_distinguished_name] + +[ v3_req ] +basicConstraints = CA:FALSE +keyUsage = nonRepudiation, digitalSignature, keyEncipherment +subjectAltName = @alt_names + +[alt_names] +DNS.101 = kubernetes +DNS.102 = kubernetes.default +DNS.103 = kubernetes.default.svc +DNS.104 = kubernetes.default.svc.cluster.local +{% if item == "apiserver" %} +IP.200 = 10.3.0.1 + {% for controller in hosts|selectattr('role', 'equalto', 'controller') %} + {%- set count = loop.index %} + {%- for entry in controller.dnsmasq_config %} +IP.{{count}}{{loop.index}} = {{entry.split(',')[1]}} +DNS.{{count}}{{loop.index}} = {{entry.split(',')[2]}}.{{domain}} +{% endfor %} + {%- endfor %} +{%- elif item == "worker" %} + {%- for worker in hosts|selectattr('role', 'equalto', 'worker') %} + {%- set count = loop.index %} + {%- for entry in worker.dnsmasq_config %} +IP.{{count}}{{loop.index }} = {{entry.split(',')[1]}} +DNS.{{count}}{{loop.index }} = {{entry.split(',')[2]}}.{{domain}} +{% endfor %} + {%- endfor %} +# workers +{% endif %} |