Add certs and enable SSL
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
This commit is contained in:
parent
117785c73d
commit
c1a240521c
3 changed files with 21 additions and 5 deletions
|
@ -6,7 +6,7 @@ StandardError=syslog
|
|||
SyslogIdentifier=regcfp
|
||||
User=root
|
||||
Group=root
|
||||
WorkinDirectory=/srv/regcfp
|
||||
WorkingDirectory=/srv/regcfp
|
||||
Environment=NODE_ENV=production
|
||||
|
||||
[Install]
|
||||
|
|
|
@ -26,7 +26,22 @@
|
|||
template: src=config.json dest=/srv/regcfp/config/config.json mode=0640
|
||||
notify:
|
||||
- restart regcfp
|
||||
|
||||
- name: Copy over the ftf certs
|
||||
copy: src="{{private}}/files/httpd/{{item}}"
|
||||
dest=/etc/pki/tls/certs
|
||||
with_items:
|
||||
- flocktofedora.org.crt
|
||||
- flocktofedora.org.intermediate.crt
|
||||
notify:
|
||||
- restart regcfp
|
||||
|
||||
- name: Copy over the ftf cert key
|
||||
copy: src="{{private}}/files/httpd/flocktofedora.org.key"
|
||||
dest=/etc/pki/tls/private
|
||||
notify:
|
||||
- restart regcfp
|
||||
|
||||
- name: copy over the systemd file
|
||||
copy: src=regcfp.service dest=/etc/systemd/system/regcfp.service mode=0640
|
||||
notify:
|
||||
|
|
|
@ -30,13 +30,14 @@
|
|||
"port": 80
|
||||
},
|
||||
"https": {
|
||||
"enabled": false,
|
||||
"only": true,
|
||||
"enabled": true,
|
||||
"only": false,
|
||||
"url": "https://register.flocktofedora.org",
|
||||
"listenip": "0.0.0.0",
|
||||
"port": 443,
|
||||
"cert": "certificate.crt",
|
||||
"key": "certificate.key"
|
||||
"cert": "/etc/pki/certs/flocktofedora.org.crt",
|
||||
"ca": "/etc/pki/certs/flocktofedora.org.intermediate.crt",
|
||||
"key": "/etc/pki/certs/flocktofedora.org.key"
|
||||
}
|
||||
},
|
||||
|
||||
|
|
Loading…
Add table
Add a link
Reference in a new issue