LILiK
/
lilik_playbook
5
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

add ca playbook

python3
Andrea Cimbalo 8 years ago
parent
dcf8116f60
commit
a52857dd67
2 changed files with 77 additions and 0 deletions
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. +6
    -0
      ca.yaml
  2. +71
    -0
      roles/ca/tasks/main.yaml

+ 6
- 0
ca.yaml View File

@ -0,0 +1,6 @@
---
- hosts: autorities
roles:
- role: ssh_server
- role: dns_record
- role: ca

+ 71
- 0
roles/ca/tasks/main.yaml View File

@ -0,0 +1,71 @@
- name: create sign user
user:
name: sign
shell: /srv/ca/manager.py
- name: create request user
user:
name: request
shell: /srv/ca/request_server.py
- name: install ca packages
apt:
name: "{{ item }}"
state: present
update_cache: yes
cache_valid_time: 3600
install_recommends: '{{ install_recommends | default("no") }}'
with_items:
- git
- python3
- python3-pip
- name: install peewee with pip
pip:
name: peewee
executable: pip3
- name: clone ca repository
git:
repo: https://github.com/LILiK-117bis/ca_manager.git
dest: /srv/ca
- name: create /var/lib/ca_manager
file:
path: /var/lib/ca_manager
owner: sign
group: sign
mode: 0751
state: directory
- name: set outputs permissions
file:
path: /var/lib/ca_manager/outputs
owner: sign
group: sign
mode: 0751
state: directory
- name: set private permissions
file:
path: /var/lib/ca_manager/private
owner: sign
group: sign
mode: 0700
state: directory
- name: set requests permissions
file:
path: /var/lib/ca_manager/requests
owner: sign
group: request
mode: 0730
state: directory
- name: set results permissions
file:
path: /var/lib/ca_manager/results
owner: sign
group: sign
mode: 0751
state: directory

Write Preview
Loading…
Cancel
Save