diff options
| author | Christian Pointner <equinox@spreadspace.org> | 2024-01-20 03:19:00 +0100 |
|---|---|---|
| committer | Christian Pointner <equinox@spreadspace.org> | 2024-01-20 03:19:00 +0100 |
| commit | 875a5e2e51370c47f2bba59ba7dca414240cbeb5 (patch) | |
| tree | adce38afe986d724af775c30a2117281bc2f8cd8 /inventory | |
| parent | apps/whawty/auth: almost done (diff) | |
x509: fix duplicate inclusion problem
Diffstat (limited to 'inventory')
| -rw-r--r-- | inventory/host_vars/ch-testvm-prometheus.yml | 49 |
1 files changed, 44 insertions, 5 deletions
diff --git a/inventory/host_vars/ch-testvm-prometheus.yml b/inventory/host_vars/ch-testvm-prometheus.yml index 84cfbf92..f155fa38 100644 --- a/inventory/host_vars/ch-testvm-prometheus.yml +++ b/inventory/host_vars/ch-testvm-prometheus.yml @@ -171,10 +171,8 @@ apps_publish_zone__ch_testvm_prometheus: key_content: "{{ ch_testvm_prometheus_apps_publish_ca_key }}" - - whawty_auth_instances: - test: + foo: version: 0.2-rc9 port: 3080 store: @@ -192,10 +190,10 @@ whawty_auth_instances: storage: type: lvm parent: *_lvm_thinpool_system_storage_ - lv: whawty-auth-test + lv: whawty-auth-foo size: 128M fs: ext4 - dest: /srv/whawty/auth/test + dest: /srv/whawty/auth/foo publish: zone: "{{ apps_publish_zone__ch_testvm_prometheus }}" hostnames: @@ -215,3 +213,44 @@ whawty_auth_instances: create_subject_key_identifier: yes not_after: +52w renew_margin: +42d + bar: + version: 0.2-rc9 + port: 3180 + store: + default: 1 + params: + - id: 1 + argon2id: + time: 1 + memory: 65536 + threads: 4 + length: 32 + sync: + port: 3122 + authorized_keys: "{{ users.equinox.ssh }}" + storage: + type: lvm + parent: *_lvm_thinpool_system_storage_ + lv: whawty-auth-bar + size: 128M + fs: ext4 + dest: /srv/whawty/auth/bar + publish: + zone: "{{ apps_publish_zone__ch_testvm_prometheus }}" + hostnames: + - passwd.bar.com + tls: + certificate_provider: selfsigned + cert: + organization_name: "chaos-at-home" + organizational_unit_name: "ansible" + key_usage: + - digitalSignature + - keyAgreement + key_usage_critical: yes + extended_key_usage: + - serverAuth + extended_key_usage_critical: yes + create_subject_key_identifier: yes + not_after: +52w + renew_margin: +42d |