Adding fedora-messaging certs
Signed-off-by: Mohan Boddu <mboddu@bhujji.com>
This commit is contained in:
Mohan Boddu
parent
02cd8ac5a2
commit
9e3b43f66e
2 changed files with 51 additions and 2 deletions
|
|
@ -5,12 +5,16 @@
|
||||||
dest: /usr/lib/python3.7/site-packages/
|
dest: /usr/lib/python3.7/site-packages/
|
||||||
mode: '0755'
|
mode: '0755'
|
||||||
when: inventory_hostname.startswith('odcs-backend-releng')
|
when: inventory_hostname.startswith('odcs-backend-releng')
|
||||||
|
tags:
|
||||||
|
- fmc
|
||||||
|
|
||||||
- name: Install fedora-messaging rpm
|
- name: Install fedora-messaging rpm
|
||||||
dnf:
|
dnf:
|
||||||
package: fedora-messaging
|
package: fedora-messaging
|
||||||
state: latest
|
state: latest
|
||||||
when: inventory_hostname.startswith('odcs-backend-releng')
|
when: inventory_hostname.startswith('odcs-backend-releng')
|
||||||
|
tags:
|
||||||
|
- fmc
|
||||||
|
|
||||||
- name: Place fedora-minimal-compose.toml /etc/fedora-messaging/
|
- name: Place fedora-minimal-compose.toml /etc/fedora-messaging/
|
||||||
template:
|
template:
|
||||||
|
|
@ -20,6 +24,8 @@
|
||||||
group: root
|
group: root
|
||||||
mode: 644
|
mode: 644
|
||||||
when: inventory_hostname.startswith('odcs-backend-releng')
|
when: inventory_hostname.startswith('odcs-backend-releng')
|
||||||
|
tags:
|
||||||
|
- fmc
|
||||||
|
|
||||||
- name: Start and enable the fmc services
|
- name: Start and enable the fmc services
|
||||||
service:
|
service:
|
||||||
|
|
@ -27,3 +33,45 @@
|
||||||
state: started
|
state: started
|
||||||
enabled: yes
|
enabled: yes
|
||||||
when: inventory_hostname.startswith('odcs-backend-releng')
|
when: inventory_hostname.startswith('odcs-backend-releng')
|
||||||
|
tags:
|
||||||
|
- fmc
|
||||||
|
|
||||||
|
- name: Create /etc/pki/fedora-messaging
|
||||||
|
file:
|
||||||
|
dest: /etc/pki/fedora-messaging
|
||||||
|
mode: 0775
|
||||||
|
owner: root
|
||||||
|
group: root
|
||||||
|
state: directory
|
||||||
|
tags:
|
||||||
|
- fmc
|
||||||
|
|
||||||
|
- name: Deploy the fedora-messaging CA
|
||||||
|
copy:
|
||||||
|
src: "{{ private }}/files/rabbitmq/{{env}}/pki/ca.crt"
|
||||||
|
dest: /etc/pki/fedora-messaging/cacert.pem
|
||||||
|
mode: 0644
|
||||||
|
owner: root
|
||||||
|
group: root
|
||||||
|
tags:
|
||||||
|
- fmc
|
||||||
|
|
||||||
|
- name: Deploy the fedora-messaging cert
|
||||||
|
copy:
|
||||||
|
src: "{{ private }}/files/rabbitmq/{{env}}/pki/issued/fmc{{env_suffix}}.crt"
|
||||||
|
dest: /etc/pki/fedora-messaging/fmc-cert.pem
|
||||||
|
mode: 0644
|
||||||
|
owner: root
|
||||||
|
group: root
|
||||||
|
tags:
|
||||||
|
- fmc
|
||||||
|
|
||||||
|
- name: Deploy the fedora-messaging key
|
||||||
|
copy:
|
||||||
|
src: "{{ private }}/files/rabbitmq/{{env}}/pki/private/fmc{{env_suffix}}.key"
|
||||||
|
dest: /etc/pki/fedora-messaging/fmc-key.pem
|
||||||
|
mode: 0600
|
||||||
|
owner: root
|
||||||
|
group: root
|
||||||
|
tags:
|
||||||
|
- fmc
|
||||||
|
|
|
||||||
|
|
@ -3,11 +3,12 @@
|
||||||
# This file is in the TOML format.
|
# This file is in the TOML format.
|
||||||
amqp_url = "amqps://bodhi{{ env_suffix }}:@rabbitmq{{ env_suffix }}.fedoraproject.org/%2Fpubsub"
|
amqp_url = "amqps://bodhi{{ env_suffix }}:@rabbitmq{{ env_suffix }}.fedoraproject.org/%2Fpubsub"
|
||||||
callback = "fedora-minimal-compose:Consumer"
|
callback = "fedora-minimal-compose:Consumer"
|
||||||
|
passive_declares = true
|
||||||
|
|
||||||
[tls]
|
[tls]
|
||||||
ca_cert = "/etc/fedora-messaging/cacert.pem"
|
ca_cert = "/etc/fedora-messaging/cacert.pem"
|
||||||
keyfile = "/etc/fedora-messaging/fedora-key.pem"
|
keyfile = "/etc/fedora-messaging/fmc-key.pem"
|
||||||
certfile = "/etc/fedora-messaging/fedora-cert.pem"
|
certfile = "/etc/fedora-messaging/fmc-cert.pem"
|
||||||
|
|
||||||
[client_properties]
|
[client_properties]
|
||||||
app = "fmc"
|
app = "fmc"
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue