infrastructure/ansible
1
0
Fork 0
Code Pull requests 7 Activity Actions

Refactor the copy of keys and certs for unbound

Browse source 
Also restart the server if the key is changed, and tags the task
This commit is contained in:
Michael Scherer 2016-04-09 19:20:03 +02:00 committed by Kevin Fenzi
parent 9cea8170d4
commit b705178a8a
1 changed files with 11 additions and 11 deletions
Download patch file Download diff file Expand all files Collapse all files

22
roles/unbound/tasks/main.yml
View file

@ -24,17 +24,17 @@
notify:
- semanage dns8953
- name: copying unbound control key
copy: src="{{ private }}/files/unbound/unbound_control.key" dest=/etc/unbound/unbound_control.key owner=root group=unbound mode=640
- name: copying unbound control pem
copy: src="{{ private }}/files/unbound/unbound_control.pem" dest=/etc/unbound/unbound_control.pem owner=root group=unbound mode=640
- name: copying unbound server key
copy: src="{{ private }}/files/unbound/unbound_server.key" dest=/etc/unbound/unbound_server.key owner=root group=unbound mode=640
- name: copying unbound server pem
copy: src="{{ private }}/files/unbound/unbound_server.pem" dest=/etc/unbound/unbound_server.pem owner=root group=unbound mode=640
- name: copying unbound keys and certs
copy: src="{{ private }}/files/unbound/unbound_{{ item }}" dest=/etc/unbound/unbound_{{ item }} owner=root group=unbound mode=640
with_items:
- control.key
- control.pem
- server.key
- server.pem
notify:
- restart unbound
tags:
- config
- name: Enable and start unbound service
service: state=running enabled=true name=unbound