https://github.com/borisskert/ansible-openssl-self-signed-certs

https://github.com/borisskert/ansible-openssl-self-signed-certs

ansible ansible-role certificates openssl self-signed-certificate

Last synced: 2 months ago
JSON representation

• Host: GitHub
• URL: https://github.com/borisskert/ansible-openssl-self-signed-certs
• Owner: borisskert
• License: mit
• Created: 2020-04-13T09:51:45.000Z (over 5 years ago)
• Default Branch: master
• Last Pushed: 2024-12-15T10:18:45.000Z (10 months ago)
• Last Synced: 2025-03-17T23:58:13.646Z (7 months ago)
• Topics: ansible, ansible-role, certificates, openssl, self-signed-certificate
• Size: 36.1 KB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE.txt

Awesome Lists containing this project

README

          
# ansible-openssl-self-signed-certs

Creates self-signed certificates with OpenSSL

## Requirements

* Python

* Docker (for testing only)

## Tasks

* Create working directory

* Create certificate authority (CA)

* Create certificates for sites

## Role parameters

| Variable                       | Type           | Mandatory? | Default            | Description                                                         |

|--------------------------------|----------------|------------|--------------------|---------------------------------------------------------------------|

| openssl_working_directory      | text           | no         | /srv/openssl       | Directory to which the CA and CSRs are saved                        |

| openssl_certificates_directory | text           | no         | /srv/openssl/certs | Directory to which the certificates and keys are saved              |

| openssl_sites                  | array of texts | no         | []                 | The sites for which certificates will be created                    |

| openssl_ca_name                | text           | no         | my_CA              | Your certificate name                                               |

| openssl_download_dir           | text           | no         | ./.tmp             | Download directory where the created CA cert will be stored locally |

| openssl_ca_key_size            | number         | no         | 4096               | Defines the CA key size                                             |

| openssl_cert_key_size          | number         | no         | 4096               | Defines the certificates key size                                   |

## Example Playbook

### Requirement

```yaml

- name: create-self-signed-certs

  src: https://github.com/borisskert/ansible-openssl-self-signed-certs.git

  scm: git

```

### Playbook

Usage (without parameters):

```yaml

- hosts: test_machine

  roles:

    - role: create-self-signed-certs

```

Usage (with parameters):

```yaml

- hosts: test_machine

  roles:

    - role: create-self-signed-certs

      openssl_ca_name: site.org

      openssl_ca_key_size: 8192

      openssl_cert_key_size: 2048

      openssl_sites:

        - my.first.site.org

        - my.second.site.org

        - my.third.site.org

```

## Testing

Requirements:

* [Ansible](https://docs.ansible.com/)

* [Molecule](https://molecule.readthedocs.io/en/latest/index.html)

* [yamllint](https://yamllint.readthedocs.io/en/stable/#)

* [ansible-lint](https://docs.ansible.com/ansible-lint/)

* [Docker](https://docs.docker.com/)

### Run within docker

```shell script

molecule test

```