histausse/ansible_hacky_pki
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

add crl endpoint support

Browse source
This commit is contained in:
Jean-Marie Mineau 2021-09-19 22:42:31 +02:00
parent ec297a7dd3
commit b41a2b1bc2
No known key found for this signature in database
GPG key ID: 67486F107F62E9E9
3 changed files with 30 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
roles/generate-cert/tasks/main.yml
View file

@ -32,7 +32,6 @@
size: "{{ key_size | default(omit) }}"
delegate_to: localhost
# TODO: add a revocation methode, most probably crl, with crl_distribution_points
- name: Generate a Certificate Signing Request
become: false
openssl_csr:
@ -51,6 +50,7 @@
key_usage: "{{ key_usage }}"
key_usage_critical: yes
subject_alt_name: "{{ subject_alt_name | default(omit) }}"
crl_distribution_points: "{{ crl_distribution_points | default(omit) }}"
delegate_to: localhost
- name: Put the CA in a file