From 3e11606f93bba83c5d35f05d21b0b099bde9b831 Mon Sep 17 00:00:00 2001 From: Aleksandr Rykalin Date: Mon, 18 Nov 2019 19:32:32 +0300 Subject: [PATCH 1/2] removing accidently added playbook --- tests/jeremy-playbook.yml | 33 --------------------------------- 1 file changed, 33 deletions(-) delete mode 100644 tests/jeremy-playbook.yml diff --git a/tests/jeremy-playbook.yml b/tests/jeremy-playbook.yml deleted file mode 100644 index af8159a..0000000 --- a/tests/jeremy-playbook.yml +++ /dev/null @@ -1,33 +0,0 @@ ---- -- hosts: localhost - roles: - - role: ansible-role-venafi - #certificate_common_name: "{{ ansible_fqdn }}.jeremy-test.venafi.com" - certificate_common_name: "ansible-test.se.venafi.com" - certificate_cert_dir: "/tmp/etc/ssl/{{ certificate_common_name }}" - - certificate_alt_name: "IP:192.168.0.15,DNS:ansible-test-ext.se.venafi.com" - #certificate_alt_name: "IP:192.168.1.1,DNS:www.venafi.example.com,DNS:m.venafi.example.com,email:e@venafi.com,email:e2@venafi.com,IP Address:192.168.2.2" - - certificate_privatekey_type: "RSA" - certificate_privatekey_size: "2048" - #certificate_privatekey_curve: "P251" - #certificate_privatekey_passphrase: "password" - #certificate_chain_option: "last" - certificate_before_expired_hours: 2000 - - #certificate_cert_dir: "/etc/ssl/{{ certificate_common_name }}" - certificate_cert_path: "{{ certificate_cert_dir }}/{{ certificate_common_name }}.pem" - certificate_chain_path: "{{ certificate_cert_dir }}/{{ certificate_common_name }}.chain.pem" - certificate_privatekey_path: "{{ certificate_cert_dir }}/{{ certificate_common_name }}.key" - #certificate_csr_path: "{{ certificate_cert_dir }}/{{ certificate_common_name }}.csr" - - # Where to execute venafi_certificate module. If set to false, certificate will be - # created on Ansible master host and then copied to the remote server. - #certificate_remote_execution: false - # Remote location where to place the certificate. - #certificate_remote_cert_path: "{{ certificate_cert_dir }}/{{ certificate_common_name }}.pem" - #certificate_remote_chain_path: "{{ certificate_cert_dir }}/{{ certificate_common_name }}.chain.pem" - #certificate_remote_privatekey_path: "{{ certificate_cert_dir }}/{{ certificate_common_name }}.key" - # Set to false if you don't want to copy private key to remote location. - #certificate_copy_private_key_to_remote: true From 189771827699054c90faf122caddaedc9aae78e8 Mon Sep 17 00:00:00 2001 From: Aleksandr Rykalin Date: Mon, 18 Nov 2019 19:35:10 +0300 Subject: [PATCH 2/2] key size back to 2048 --- tasks/remote-certificate.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tasks/remote-certificate.yml b/tasks/remote-certificate.yml index 182ad93..69853f7 100644 --- a/tasks/remote-certificate.yml +++ b/tasks/remote-certificate.yml @@ -12,7 +12,7 @@ cert_path: "{{ certificate_cert_path }}" chain_path: "{{ certificate_chain_path if certificate_chain_path is defined else None }}" privatekey_path: "{{ certificate_privatekey_path if certificate_privatekey_path is defined else None }}" - privatekey_size: "{{ certificate_privatekey_size if certificate_privatekey_size is defined else 4096 }}" + privatekey_size: "{{ certificate_privatekey_size if certificate_privatekey_size is defined else 2048 }}" common_name: "{{ certificate_common_name }}" alt_name: "{{ certificate_alt_name | default([]) }}" before_expired_hours: "{{ certificate_before_expired_hours if certificate_before_expired_hours is defined else None }}"