infrastructure
/
ansible-role-ipa-getcert
mirror of https://github.com/rocky-linux/ansible-role-ipa-getcert.git
7
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
18 Commits 2 Branches 0 Tags 53 KiB
Jinja 100%
Go to file
Louis Abel 9245c6daab
update meta 		2024-04-02 21:08:26 -07:00
defaults add cname support 2021-01-21 19:22:55 -07:00
github/workflows Initial commit 2020-12-18 23:19:07 -07:00
meta update meta 2024-04-02 21:08:26 -07:00
molecule Initial commit 2020-12-18 23:19:07 -07:00
tasks start using FQCN 2022-03-27 19:36:15 -07:00
templates all service to be chosen 2021-08-25 09:58:40 -07:00
vars fix up ipa-getcert role to be modular 2020-12-19 18:12:34 -07:00
.ansible-lint Initial commit 2020-12-18 23:19:07 -07:00
.pre-commit-config.yaml Initial commit 2020-12-18 23:19:07 -07:00
.yamllint Initial commit 2020-12-18 23:19:07 -07:00
CHANGELOG.md Initial commit 2020-12-18 23:19:07 -07:00
LICENSE Initial commit 2020-12-18 23:19:07 -07:00
README.md fix up ipa-getcert role to be modular 2020-12-19 18:13:50 -07:00

README.md

CI Badge

ipa-getcert Ansible Role

A very basic ipa-getcert role used for certificates issued for internal communication. This assumes the client is enrolled with FreeIPA.

This is loosely based on another project on github with some heavy modifications and adapted for the Rocky Linux infrastructure. In particular, we have made it more modular. This may be used and copied.

Note: Note that the certificates should auto-renew when requested via ipa-getcert. However. if you turn on the chain, you will have to fix that manually.

Getting started

Ensure all dependencies are installed and then follow the below process

  1. git clone repo Get the development repository
  2. pre-commit install Install the pre-commit hooks
  3. Make edits as explained in the customization section
  4. pre-commit Make sure existing code is good
  5. do development You know what to do
  6. pre-commit Make sure the edits are good to go
  7. molecule converge

Dependencies

This repo expects 3 things installed on the local machine

  1. pre-commit Methodology to test yaml style
  2. ansible-lint lint ansible code for best practices
  3. yamllint Ensures all yaml is well formed

Customization

If you can come up with a customization to this, go for it!

Optional

The github actions are configured to automatically run the molecule tests but if you want to load them locally you will also need molecule installed on the development machine

Advanced

There are numerous other options within the defaults/main.yml that can change other parts of the behavior of the system

Changelog

The changelog is stored externally