From c7537a7bb91f0bd7b81fb19b81470e390c90b75c Mon Sep 17 00:00:00 2001 From: Kevin Fenzi Date: Tue, 1 Mar 2022 14:21:08 -0800 Subject: [PATCH] staging: move to new wildcard stg cert Signed-off-by: Kevin Fenzi --- inventory/group_vars/staging | 8 ++++---- playbooks/include/proxies-certificates.yml | 5 +++++ 2 files changed, 9 insertions(+), 4 deletions(-) diff --git a/inventory/group_vars/staging b/inventory/group_vars/staging index 8c54a66a1c..c590e79bd8 100644 --- a/inventory/group_vars/staging +++ b/inventory/group_vars/staging @@ -51,8 +51,8 @@ os_wildcard_int_file: wildcard-2021.app.os.stg.fedoraproject.org.intermediate.ce os_wildcard_key_file: wildcard-2021.app.os.stg.fedoraproject.org.key # RIP, FAS primary_auth_source: ipa -wildcard_cert_file: wildcard-2020.stg.fedoraproject.org.cert +wildcard_cert_file: wildcard-2022.stg.fedoraproject.org.cert # This is the wildcard certname for our stg proxies. -wildcard_cert_name: wildcard-2020.stg.fedoraproject.org -wildcard_int_file: wildcard-2020.stg.fedoraproject.org.intermediate.cert -wildcard_key_file: wildcard-2020.stg.fedoraproject.org.key +wildcard_cert_name: wildcard-2022.stg.fedoraproject.org +wildcard_int_file: wildcard-2022.stg.fedoraproject.org.intermediate.cert +wildcard_key_file: wildcard-2022.stg.fedoraproject.org.key diff --git a/playbooks/include/proxies-certificates.yml b/playbooks/include/proxies-certificates.yml index 2a34e456dd..fe521ecb44 100644 --- a/playbooks/include/proxies-certificates.yml +++ b/playbooks/include/proxies-certificates.yml @@ -32,6 +32,11 @@ SSLCertificateChainFile: wildcard-2020.stg.fedoraproject.org.intermediate.cert when: env == "staging" + - role: httpd/certificate + certname: wildcard-2022.stg.fedoraproject.org + SSLCertificateChainFile: wildcard-2022.stg.fedoraproject.org.intermediate.cert + when: env == "staging" + - role: httpd/certificate certname: wildcard-2021.app.os.stg.fedoraproject.org SSLCertificateChainFile: wildcard-2021.app.os.stg.fedoraproject.org.intermediate.cert