From a7371ea44b1f864af2b4f5f858aacb1587a00dc9 Mon Sep 17 00:00:00 2001
From: Patrick Uiterwijk <puiterwijk@redhat.com>
Date: Wed, 14 Sep 2016 18:35:14 +0000
Subject: [PATCH] Create koji cert for autosign

Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
---
 roles/robosignatory/tasks/main.yml | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)

diff --git a/roles/robosignatory/tasks/main.yml b/roles/robosignatory/tasks/main.yml
index d5a02a879d..5829724424 100644
--- a/roles/robosignatory/tasks/main.yml
+++ b/roles/robosignatory/tasks/main.yml
@@ -3,6 +3,28 @@
   tags:
   - packages
 
+- name: Create config directory
+  file: path=/etc/robosignatory state=directory owner=fedmsg group=fedmsg mode=0750
+  tags:
+  - config
+
+- name: Create sigul directory
+  file: path=/etc/robosignatory/sigul state=directory owner=fedmsg group=fedmsg mode=0750
+  tags:
+  - config
+
+- name: Install koji certificate and key
+  copy: src="{{ private }}/files/koji/autopen.pem" dest=/etc/robosignatory/koji.cert
+        owner=fedmsg group=fedmsg mode=0640
+  tags:
+  - config
+
+- name: Install koji CA certificate
+  copy: src="{{ private }}/fedora-cert.cert" dest=/etc/robosignatory/serverca.cert
+        owner=fedmsg group=fedmsg mode=0640
+  tags:
+  - config
+
 - name: Setup robosignatory config
   copy: src=robosignatory.{{env}}.conf dest=/etc/fedmsg.d/robosignatory.conf
         owner=fedmsg group=fedmsg mode=0640