diff options
| author | Guilhem Moulin <guilhem@fripost.org> | 2016-05-18 00:10:50 +0200 |
|---|---|---|
| committer | Guilhem Moulin <guilhem@fripost.org> | 2016-05-18 00:47:05 +0200 |
| commit | 71aefcc229f999f92b25e51b9444b313d95fbc86 (patch) | |
| tree | 0cfda622ac987e35543361dcc478dfe6b5b3fa08 /roles/lists | |
| parent | f4c280d1c6f43f7ca0c1e498ab87fe7aa08d5eb2 (diff) | |
Add an ansible module 'fetch_cmd' to fetch the output of a remote command locally.
And use this to fetch all X.509 leaf certificates.
Diffstat (limited to 'roles/lists')
| -rw-r--r-- | roles/lists/tasks/nginx.yml | 7 |
1 files changed, 3 insertions, 4 deletions
diff --git a/roles/lists/tasks/nginx.yml b/roles/lists/tasks/nginx.yml index 34d42bd..caa1abf 100644 --- a/roles/lists/tasks/nginx.yml +++ b/roles/lists/tasks/nginx.yml @@ -11,26 +11,25 @@ - Restart Nginx - name: Create /etc/nginx/sites-enabled/sympa file: src=../sites-available/sympa dest=/etc/nginx/sites-enabled/sympa owner=root group=root state=link register: r2 notify: - Restart Nginx - name: Start nginx service: name=nginx state=started when: not (r1.changed or r2.changed) - meta: flush_handlers - name: Fetch Nginx's X.509 certificate # Ensure we don't fetch private data become: False - fetch: src=/etc/nginx/ssl/lists.fripost.org.pem - dest=certs/public/ - fail_on_missing=yes - flat=yes + fetch_cmd: cmd="openssl x509" + stdin=/etc/nginx/ssl/lists.fripost.org.pem + dest=certs/public/lists.fripost.org.pem tags: - genkey |