summaryrefslogtreecommitdiff
path: root/inventory/host_vars/ch-testvm-phoebe.yml
diff options
context:
space:
mode:
authorChristian Pointner <equinox@spreadspace.org>2023-12-20 16:26:28 +0100
committerChristian Pointner <equinox@spreadspace.org>2023-12-20 16:26:28 +0100
commitbc001d962bccf2faff6eecfbbace44cc6d6e7a27 (patch)
tree3e6b8484493df8d62ad4785da3e629a838086707 /inventory/host_vars/ch-testvm-phoebe.yml
parentx509: make ca-certificates accessable for role users (diff)
mosqitto: rename to mosquitto/broker and add mosquitto/client
Diffstat (limited to 'inventory/host_vars/ch-testvm-phoebe.yml')
-rw-r--r--inventory/host_vars/ch-testvm-phoebe.yml38
1 files changed, 38 insertions, 0 deletions
diff --git a/inventory/host_vars/ch-testvm-phoebe.yml b/inventory/host_vars/ch-testvm-phoebe.yml
index d15e4142..7eae49e7 100644
--- a/inventory/host_vars/ch-testvm-phoebe.yml
+++ b/inventory/host_vars/ch-testvm-phoebe.yml
@@ -39,3 +39,41 @@ network:
address: "{{ network_zones.iot.prefix | ansible.utils.ipaddr(network_zones.iot.offsets[inventory_hostname]) }}"
ntp_variant: systemd-timesyncd
+
+
+###
+mosquitto_client_tls:
+ foo-consumer:
+ certificate_provider: managed-ca
+ certificate_config:
+ ca:
+ host: ch-testvm-prometheus
+ name: foo
+ cert:
+ common_name: consumer
+ organization_name: "spreadspace"
+ organizational_unit_name: "ansible"
+ san_extra:
+ - "IP:192.168.32.43"
+ extended_key_usage:
+ - clientAuth
+ extended_key_usage_critical: yes
+ create_subject_key_identifier: yes
+ not_after: +100w
+ foo-producer:
+ certificate_provider: managed-ca
+ certificate_config:
+ ca:
+ host: ch-testvm-prometheus
+ name: foo
+ cert:
+ common_name: producer
+ organization_name: "spreadspace"
+ organizational_unit_name: "ansible"
+ san_extra:
+ - "IP:192.168.32.43"
+ extended_key_usage:
+ - clientAuth
+ extended_key_usage_critical: yes
+ create_subject_key_identifier: yes
+ not_after: +100w
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-25 23:49:24 +0000