diff options
| author | Christian Pointner <equinox@spreadspace.org> | 2023-08-22 22:06:12 +0200 |
|---|---|---|
| committer | Christian Pointner <equinox@spreadspace.org> | 2023-08-22 22:06:12 +0200 |
| commit | de8b4a8e586979d4f2978a25b5e35cb934b148af (patch) | |
| tree | 3cbf9a7844fb56c49cf9fa259627eda34db5f9a9 /dan | |
| parent | Merge branch 'topic/uacme' (diff) | |
add ownca x509/certifcate provider
Diffstat (limited to 'dan')
| -rw-r--r-- | dan/sk-testvm.yml | 65 |
1 files changed, 34 insertions, 31 deletions
diff --git a/dan/sk-testvm.yml b/dan/sk-testvm.yml index 13a0b499..a004f9b5 100644 --- a/dan/sk-testvm.yml +++ b/dan/sk-testvm.yml @@ -11,11 +11,12 @@ - name: Payload Setup hosts: sk-testvm vars: - acme_client: uacme + # acme_client: uacme # acme_client: acmetool - cert_provider: "{{ acme_client }}" + # cert_provider: "{{ acme_client }}" # cert_provider: static # cert_provider: selfsigned + cert_provider: ownca roles: - role: apt-repo/spreadspace - role: kubernetes/base @@ -38,24 +39,26 @@ index: index.html static_cert_config: "{{ static_cert_config__default }}" selfsigned_cert_config: "{{ selfsigned_cert_config__default }}" - # - role: nginx/vhost - # nginx_vhost: - # name: test - # template: generic - # tls: - # certificate_provider: "{{ cert_provider }}" - # hsts: no - # hostnames: - # - test.spreadspace.org - # - test.spreadspace.com - # - test.spreadspace.net - # - test.spreadspace.systems - # locations: - # '/': - # root: /var/www/test - # index: index.html - # static_cert_config: "{{ static_cert_config__test }}" - # selfsigned_cert_config: "{{ selfsigned_cert_config__test }}" + ownca_cert_config: "{{ ownca_cert_config__default }}" + - role: nginx/vhost + nginx_vhost: + name: test + template: generic + tls: + certificate_provider: "{{ cert_provider }}" + hsts: no + hostnames: + - test.spreadspace.org + - test.spreadspace.com + - test.spreadspace.net + - test.spreadspace.systems + locations: + '/': + root: /var/www/test + index: index.html + static_cert_config: "{{ static_cert_config__test }}" + selfsigned_cert_config: "{{ selfsigned_cert_config__test }}" + ownca_cert_config: "{{ ownca_cert_config__test }}" # - role: apps/mumble # mumble_version: v1.4.274-4 # mumble_instance: spreadspace @@ -72,17 +75,17 @@ # rememberchannel: true # mumble_tls: # certificate_provider: "{{ cert_provider }}" - - role: apps/coturn - coturn_version: 4.6.2-r4 - coturn_realm: spreadspace - coturn_hostnames: - - test.spreadspace.org - - test.spreadspace.com - - test.spreadspace.net - - test.spreadspace.systems - coturn_auth_secret: "somewhat-secret" - coturn_tls: - certificate_provider: "{{ cert_provider }}" + # - role: apps/coturn + # coturn_version: 4.6.2-r4 + # coturn_realm: spreadspace + # coturn_hostnames: + # - test.spreadspace.org + # - test.spreadspace.com + # - test.spreadspace.net + # - test.spreadspace.systems + # coturn_auth_secret: "somewhat-secret" + # coturn_tls: + # certificate_provider: "{{ cert_provider }}" post_tasks: - name: make sure document root directories exist loop: |