ansible/roles/ocp4-workload-enable-lets-encrypt-certificates/files/router-with-certs.yaml
@@ -1,19 +1,10 @@ apiVersion: ingress.openshift.io/v1alpha1 kind: ClusterIngress apiVersion: operator.openshift.io/v1 kind: IngressController metadata: finalizers: - ingress.openshift.io/default-cluster-ingress - ingress.openshift.io/ingress-controller name: default namespace: openshift-ingress-operator spec: defaultCertificateSecret: router-certs highAvailability: null ingressDomain: null namespaceSelector: null nodePlacement: nodeSelector: matchLabels: node-role.kubernetes.io/worker: "" replicas: 2 routeSelector: null unsupportedExtensions: null defaultCertificate: name: router-certs ansible/roles/ocp4-workload-enable-lets-encrypt-certificates/files/router-without-certs.yaml
@@ -1,19 +1,8 @@ apiVersion: ingress.openshift.io/v1alpha1 kind: ClusterIngress apiVersion: operator.openshift.io/v1 kind: IngressController metadata: finalizers: - ingress.openshift.io/default-cluster-ingress - ingress.openshift.io/ingress-controller name: default namespace: openshift-ingress-operator spec: defaultCertificateSecret: null highAvailability: null ingressDomain: null namespaceSelector: null nodePlacement: nodeSelector: matchLabels: node-role.kubernetes.io/worker: "" replicas: 2 routeSelector: null unsupportedExtensions: null spec: {} ansible/roles/ocp4-workload-enable-lets-encrypt-certificates/tasks/workload.yml
@@ -15,22 +15,22 @@ - name: Determine Wildcard Domain k8s_facts: api_version: ingress.openshift.io/v1alpha1 kind: clusteringress api_version: operator.openshift.io/v1 kind: IngressController name: default namespace: openshift-ingress-operator register: ingress_controller - name: Print API and Wildcard Domain debug: msg: "API: {{ api_hostname.stdout }}, Wildcard Domain: {{ ingress_controller.resources[0].status.ingressDomain }}" msg: "API: {{ api_hostname.stdout }}, Wildcard Domain: {{ ingress_controller.resources[0].status.domain }}" - name: Create Let's Encrypt Certificates include_role: name: host-lets-encrypt-certs vars: - acme_domain: "{{ api_hostname.stdout }}" - acme_wildcard_domain: "*.{{ ingress_controller.resources[0].status.ingressDomain }}" - acme_wildcard_domain: "*.{{ ingress_controller.resources[0].status.domain }}" - acme_aws_access_key: "{{ student_access_key_id | default(hostvars.localhost.student_access_key_id) }}" - acme_aws_secret_access_key: "{{ student_secret_access_key | default(hostvars.localhost.student_secret_access_key) }}" - acme_production: "{{ lets_encrypt_production|d(False)|bool}}"
