ansible/roles/taskotron/ssl-taskotron/tasks/main.yml

---
- name: ensure ssl related packages are installed (yum)
  yum: name={{ item }} state=latest enablerepo={{ extra_enablerepos }}
  with_items:
      - mod_ssl
  when: ansible_distribution_major_version|int < 22

- name: ensure ssl related packages are installed (dnf)
  dnf: name={{ item }} state=latest enablerepo={{ extra_enablerepos }}
  with_items:
      - mod_ssl
  when: ansible_distribution_major_version|int > 21 and ansible_cmdline.ostree is not defined

- name: copy ssl key
  copy: src={{ private }}/files/taskotron/certs/{{ inventory_hostname }}/{{ inventory_hostname }}.key dest=/etc/pki/tls/private/{{ inventory_hostname }}.key

- name: copy ssl cert
  copy: src={{ private }}/files/taskotron/certs/{{ inventory_hostname }}/{{ inventory_hostname }}.crt dest=/etc/pki/tls/certs/{{ inventory_hostname }}.crt

- name: generate rhel httpd ssl config
  template: src=ssl.conf.rhel.j2 dest=/etc/httpd/conf.d/ssl.conf owner=root group=root mode=0644
  when: is_rhel is defined
  notify:
  - reload httpd

- name: generate fedora httpd ssl config
  template: src=ssl.conf.j2 dest=/etc/httpd/conf.d/ssl.conf owner=root group=root mode=0644
  when: is_fedora is defined
  notify:
  - reload httpd