proxies: update *.id.fedoraproject.org wildcard to 2022 version
The old 2020 cert expires on 2022-03-07 which is only 5 days from now. This moves it to a new 2022 cert that lasts 1 year. This will need the proxies playbook run after it's pushed. Signed-off-by: Kevin Fenzi <kevin@scrye.com>
This commit is contained in:
Kevin Fenzi
parent
bcd9ac55e0
commit
2afcc62cc6
2 changed files with 4 additions and 4 deletions
|
|
@ -24,8 +24,8 @@
|
||||||
SSLCertificateChainFile: wildcard-2022.fedoraproject.org.intermediate.cert
|
SSLCertificateChainFile: wildcard-2022.fedoraproject.org.intermediate.cert
|
||||||
|
|
||||||
- role: httpd/certificate
|
- role: httpd/certificate
|
||||||
certname: wildcard-2020.id.fedoraproject.org
|
certname: wildcard-2022.id.fedoraproject.org
|
||||||
SSLCertificateChainFile: wildcard-2020.id.fedoraproject.org.intermediate.cert
|
SSLCertificateChainFile: wildcard-2022.id.fedoraproject.org.intermediate.cert
|
||||||
|
|
||||||
- role: httpd/certificate
|
- role: httpd/certificate
|
||||||
certname: wildcard-2020.stg.fedoraproject.org
|
certname: wildcard-2020.stg.fedoraproject.org
|
||||||
|
|
|
||||||
|
|
@ -835,8 +835,8 @@
|
||||||
# Must not be sslonly, because example.id.fedoraproject.org must be reachable
|
# Must not be sslonly, because example.id.fedoraproject.org must be reachable
|
||||||
# via plain http for openid identity support
|
# via plain http for openid identity support
|
||||||
sslonly: false
|
sslonly: false
|
||||||
cert_name: wildcard-2020.id.fedoraproject.org
|
cert_name: wildcard-2022.id.fedoraproject.org
|
||||||
SSLCertificateChainFile: wildcard-2020.id.fedoraproject.org.intermediate.cert
|
SSLCertificateChainFile: wildcard-2022.id.fedoraproject.org.intermediate.cert
|
||||||
tags:
|
tags:
|
||||||
- id.fedoraproject.org
|
- id.fedoraproject.org
|
||||||
when: env == "production"
|
when: env == "production"
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue