Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

Prefix openshift/secret-tls

Browse source 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
This commit is contained in:
Aurélien Bompard 2024-11-28 18:17:30 +01:00
parent c5f8fe7189
commit fac05df8de
No known key found for this signature in database
GPG key ID: 31584CFEB9BF64AD
1 changed files with 7 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

14
roles/openshift/secret-tls/tasks/main.yml
View file

@ -1,25 +1,25 @@
--- ---
- name: Copy private tlscert {{privatefile}} - name: Copy private tlscert {{secret_tls_privatefile}}
copy: src={{private}}/files/{{ private_cert }} dest=/etc/openshift_apps/{{app}}/{{key}}.crt copy: src={{private}}/files/{{ secret_tls_private_cert }} dest=/etc/openshift_apps/{{secret_tls_app}}/{{secret_tls_key}}.crt
register: secret_privatecert register: secret_privatecert
- name: Copy private tlskey {{privatefile}} - name: Copy private tlskey {{secret_tls_privatefile}}
copy: src={{private}}/files/{{ private_key }} dest=/etc/openshift_apps/{{app}}/{{key}}.key copy: src={{private}}/files/{{ secret_tls_private_key }} dest=/etc/openshift_apps/{{secret_tls_app}}/{{secret_tls_key}}.key
register: secret_privatekey register: secret_privatekey
- name: Delete existing secrets - name: Delete existing secrets
shell: oc -n {{app}} delete secret/{{secret_name}} shell: oc -n {{secret_tls_app}} delete secret/{{secret_tls_secret_name}}
register: delete_out register: delete_out
changed_when: "'NotFound' in delete_out.stderr" changed_when: "'NotFound' in delete_out.stderr"
failed_when: "('NotFound' not in delete_out.stderr) and (delete_out.rc != 0)" failed_when: "('NotFound' not in delete_out.stderr) and (delete_out.rc != 0)"
when: secret_privatecert.changed or secret_privatekey.changed when: secret_privatecert.changed or secret_privatekey.changed
- name: Call `oc create secret tls` on the copied file - name: Call `oc create secret tls` on the copied file
shell: oc -n {{app}} create secret tls {{secret_name}} --cert=/etc/openshift_apps/{{app}}/{{key}}.crt --key=/etc/openshift_apps/{{app}}/{{key}}.key shell: oc -n {{secret_tls_app}} create secret tls {{secret_tls_secret_name}} --cert=/etc/openshift_apps/{{secret_tls_app}}/{{secret_tls_key}}.crt --key=/etc/openshift_apps/{{secret_tls_app}}/{{secret_tls_key}}.key
register: create_out register: create_out
when: secret_privatecert.changed or secret_privatekey.changed when: secret_privatecert.changed or secret_privatekey.changed
- name: Call `oc create secret tls` on the copied file - name: Call `oc create secret tls` on the copied file
shell: oc -n {{app}} create secret tls {{secret_name}} --cert=/etc/openshift_apps/{{app}}/{{key}}.crt --key=/etc/openshift_apps/{{app}}/{{key}}.key shell: oc -n {{secret_tls_app}} create secret tls {{secret_tls_secret_name}} --cert=/etc/openshift_apps/{{secret_tls_app}}/{{secret_tls_key}}.crt --key=/etc/openshift_apps/{{secret_tls_app}}/{{secret_tls_key}}.key
register: create_out register: create_out
when: secret_privatecert.changed or secret_privatekey.changed when: secret_privatecert.changed or secret_privatekey.changed