https://github.com/bbkane/tls_certs
Use Ansible to play with TLS certificates
https://github.com/bbkane/tls_certs
Last synced: about 1 year ago
JSON representation
Use Ansible to play with TLS certificates
- Host: GitHub
- URL: https://github.com/bbkane/tls_certs
- Owner: bbkane
- Created: 2018-08-18T19:44:53.000Z (almost 8 years ago)
- Default Branch: master
- Last Pushed: 2018-08-18T19:45:35.000Z (almost 8 years ago)
- Last Synced: 2025-03-24T19:49:31.489Z (over 1 year ago)
- Language: Python
- Size: 10.7 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Notes
Using https://deliciousbrains.com/ssl-certificate-authority-for-local-https-development/
I created the root cert and used https://bbkane.github.io/2018/01/11/Fixing-HTTPS-CA-Cert-Issues.html to install it.
So I created the csr, key, and crt. But when I tried to run https://gist.github.com/dergachev/7028596 , it didn't work.
Trying https://notoriousno.blogspot.com/2017/11/simple-self-signed-tls-server-and.html
```
# rm password
openssl rsa -in host.key -out host_no_pass.key -passin pass:bbkane
# cat for PEM
cat host.crt host_no_pass.key > host.pem
# modify simple-https-server.py to use host.pem and serve on 0.0.0.0
```
client:
```
curl https://host:4443
```
And it works!
# TODO:
- reproduce this
- Make sequence diagram between client, host, and CA for provisioning and requesing HTTPS
# Usage
Please read the linked-above blog post for more detailed instructions. All
instructions are from the root repo location (in my case `~/Git/small_network`).
- Install Vagrant, VirtualBox, and Ansible (see the blog post for how I do this).
- Create the VMs:
```
vagrant up
```
- Create the local `ssh_config` file:
```
vagrant ssh-config > ssh_config
```
- Ping your new VMs with Ansible:
```
ansible all -m ping
```
- Run the test playbook:
```
ansible-playbook main.yml
```