mirror of
https://github.com/rocky-linux/infrastructure
synced 2024-12-22 10:58:29 +00:00
add service support
This commit is contained in:
parent
a5bd83543f
commit
e431bc0fc8
@ -9,6 +9,7 @@
|
||||
# -> getcert_postcmd: command to run after a certificate renews
|
||||
# -> getcert_chain: true/false, should cert and key be chained together
|
||||
# -> getcert_chain_location: location for the chain
|
||||
# -> getcert_service: service name (eg HTTP, host), defaults to host
|
||||
# TODO: Add CNAME/SAN support
|
||||
|
||||
- name: Request and sign an IPA Certificate
|
||||
@ -23,6 +24,7 @@
|
||||
nss_db_dir: "{{ getcert_nss_db_dir|default('/etc/pki/tls/db') }}"
|
||||
nss_nickname: "{{ getcert_nss_nickname|default(ansible_fqdn) }}"
|
||||
postcmd: "{{ getcert_postcmd|default(false) }}"
|
||||
service: "{{ getcert_service|default('host') }}"
|
||||
ipa_getcert_chain: "{{ getcert_chain|default(false) }}"
|
||||
ipa_getcert_chain_location: "{{ getcert_chain_location|default('/etc/pki/tls/chain') }}"
|
||||
ipa_getcert_nss: "{{ getcert_nss|default(false) }}"
|
||||
|
Loading…
Reference in New Issue
Block a user