| | |
| | | qe_quay_ssl_key_file: "" |
| | | qe_quay_ssl_cert_file: "" |
| | | when: |
| | | - qe_quay_ssl_key_file is undefined or qe_quay_ssl_cert_file is undefined or qe_quay_ssl_key_file=="" or qe_quay_ssl_cert_file=="" |
| | | - qe_quay_ssl_key_file is undefined or qe_quay_ssl_cert_file is undefined |
| | | |
| | | - name: Set up Let's Encrypt Certificates |
| | | hosts: |
| | |
| | | vars: |
| | | - acme_domain: "{{ qe_quay_hostname }}.{{ subdomain_base }}" |
| | | - acme_remote_dir: "/root" |
| | | - acme_cache_cert_file: "{{ qe_quay_ssl_cert_file }}" |
| | | - acme_cache_key_file: "{{ qe_quay_ssl_key_file }}" |
| | | - acme_cache_cert_file: "{{ANSIBLE_REPO_PATH}}/workdir/{{guid}}.cert" |
| | | - acme_cache_key_file: "{{ANSIBLE_REPO_PATH}}/workdir/{{guid}}.key" |
| | | - acme_cache_archive_file: "{{ANSIBLE_REPO_PATH}}/workdir/{{guid}}_acme.tgz" |
| | | - acme_production: "{{ qe_quay_ssl_lets_encrypt_production|d(False)|bool }}" |
| | | - acme_renew_automatically: "{{ qe_quay_ssl_lets_encrypt_renew_automatically|d(False)|bool }}" |
| | | - acme_force_issue: "{{ qe_quay_ssl_lets_encrypt_force_renew|d(False)|bool }}" |
| | | - name: Set Cert/Key file locations to cached locations |
| | | set_fact: |
| | | qe_quay_ssl_key_file: "{{ANSIBLE_REPO_PATH}}/workdir/{{guid}}.key" |
| | | qe_quay_ssl_cert_file: "{{ANSIBLE_REPO_PATH}}/workdir/{{guid}}.cert" |
| | | |
| | | - name: Set up Node Software (Docker) |
| | | hosts: |
| | |
| | | - "{{ ANSIBLE_REPO_PATH }}/configs/{{ env_type }}/env_vars.yml" |
| | | - "{{ ANSIBLE_REPO_PATH }}/configs/{{ env_type }}/env_secret_vars.yml" |
| | | tasks: |
| | | - name: Set SSL Certificate to generated certificate if no certificate file specified |
| | | - name: Set SSL Certificate to self signed certificate if no certificate file specified |
| | | set_fact: |
| | | qe_quay_ssl_cert_file: "/tmp/ssl.cert" |
| | | when: |