build

2025-12-14 10:04:52 +01:00 · 2025-11-22 18:23:42 +01:00
parent 4d24f13931
commit 22080b7d4c
6 changed files with 31 additions and 33 deletions
--- a/roles/cert_gen/files/certs.sh
+++ b/roles/cert_gen/files/certs.sh
@@ -3,7 +3,7 @@ mkdir /tmp/certgen 2>/dev/null
 cd /tmp/certgen

 openssl genrsa -aes256 -out ca-key.pem -passout pass:"foobarpwd" 4096
-openssl req -new -x509 -days 365 -key ca-key.pem -sha256 -out ca.pem -subj "/C=SK/ST=Slovakia/L=SK/O=sectorq.eu/OU=IT/CN=sectorq.eu" -passin pass:"foobarpwd"
+openssl req -new -x509 -days 365 -key ca-key.pem -sha256 -out ca.pem -subj "/C=SK/ST=Slovakia/L=SK/O=sectorq.cloud/OU=IT/CN=sectorq.cloud" -passin pass:"foobarpwd"
 openssl genrsa -out server-key.pem 4096
 if [[ `hostname` == "nas" ]]
 then
--- a/roles/cert_gen/tasks/main.yml
+++ b/roles/cert_gen/tasks/main.yml
@@ -54,6 +54,7 @@
        mode: '0777'
        owner: jd
        group: root
+      when: inventory_hostname != 'sectorq.cloud'

    - name: Copy generated certs to files
      ansible.builtin.copy:
@@ -63,25 +64,13 @@
        mode: '0644'
        owner: jd
        group: root
-
-    - name: Copy generated certs to files
-      ansible.builtin.copy:
-        src: /tmp/certgen/key.pem
-        dest: /media/nas/data/certs/docker/{{ inventory_hostname }}
-        remote_src: true
-        mode: '0644'
-        owner: jd
-        group: root
-    - name: Copy generated certs to files
-      ansible.builtin.copy:
-        src: /tmp/certgen/cert.pem
-        dest: /media/nas/data/certs/docker/{{ inventory_hostname }}
-        remote_src: true
-        mode: '0644'
-        owner: jd
-        group: root
+      when: inventory_hostname != 'sectorq.cloud'
+      loop: 
+        - ca.pem
+        - cert.pem
+        - key.pem
    - name: Restart docker service
      ansible.builtin.systemd:
        name: docker
        state: restarted
-  
+