diff options
| -rw-r--r-- | inventory/host_vars/ch-testvm-prometheus.yml | 49 | ||||
| -rw-r--r-- | roles/x509/acmetool/cert/finalize/meta/main.yml | 2 | ||||
| -rw-r--r-- | roles/x509/acmetool/cert/prepare/meta/main.yml | 2 | ||||
| -rw-r--r-- | roles/x509/managed-ca/cert/finalize/meta/main.yml | 2 | ||||
| -rw-r--r-- | roles/x509/managed-ca/cert/prepare/meta/main.yml | 2 | ||||
| -rw-r--r-- | roles/x509/selfsigned/cert/finalize/meta/main.yml | 2 | ||||
| -rw-r--r-- | roles/x509/selfsigned/cert/prepare/meta/main.yml | 2 | ||||
| -rw-r--r-- | roles/x509/static-ca/cert/finalize/meta/main.yml | 2 | ||||
| -rw-r--r-- | roles/x509/static-ca/cert/prepare/meta/main.yml | 2 | ||||
| -rw-r--r-- | roles/x509/static/cert/finalize/meta/main.yml | 2 | ||||
| -rw-r--r-- | roles/x509/static/cert/prepare/meta/main.yml | 2 | ||||
| -rw-r--r-- | roles/x509/uacme/cert/finalize/meta/main.yml | 2 | ||||
| -rw-r--r-- | roles/x509/uacme/cert/prepare/meta/main.yml | 2 |
13 files changed, 68 insertions, 5 deletions
diff --git a/inventory/host_vars/ch-testvm-prometheus.yml b/inventory/host_vars/ch-testvm-prometheus.yml index 84cfbf92..f155fa38 100644 --- a/inventory/host_vars/ch-testvm-prometheus.yml +++ b/inventory/host_vars/ch-testvm-prometheus.yml @@ -171,10 +171,8 @@ apps_publish_zone__ch_testvm_prometheus: key_content: "{{ ch_testvm_prometheus_apps_publish_ca_key }}" - - whawty_auth_instances: - test: + foo: version: 0.2-rc9 port: 3080 store: @@ -192,10 +190,10 @@ whawty_auth_instances: storage: type: lvm parent: *_lvm_thinpool_system_storage_ - lv: whawty-auth-test + lv: whawty-auth-foo size: 128M fs: ext4 - dest: /srv/whawty/auth/test + dest: /srv/whawty/auth/foo publish: zone: "{{ apps_publish_zone__ch_testvm_prometheus }}" hostnames: @@ -215,3 +213,44 @@ whawty_auth_instances: create_subject_key_identifier: yes not_after: +52w renew_margin: +42d + bar: + version: 0.2-rc9 + port: 3180 + store: + default: 1 + params: + - id: 1 + argon2id: + time: 1 + memory: 65536 + threads: 4 + length: 32 + sync: + port: 3122 + authorized_keys: "{{ users.equinox.ssh }}" + storage: + type: lvm + parent: *_lvm_thinpool_system_storage_ + lv: whawty-auth-bar + size: 128M + fs: ext4 + dest: /srv/whawty/auth/bar + publish: + zone: "{{ apps_publish_zone__ch_testvm_prometheus }}" + hostnames: + - passwd.bar.com + tls: + certificate_provider: selfsigned + cert: + organization_name: "chaos-at-home" + organizational_unit_name: "ansible" + key_usage: + - digitalSignature + - keyAgreement + key_usage_critical: yes + extended_key_usage: + - serverAuth + extended_key_usage_critical: yes + create_subject_key_identifier: yes + not_after: +52w + renew_margin: +42d diff --git a/roles/x509/acmetool/cert/finalize/meta/main.yml b/roles/x509/acmetool/cert/finalize/meta/main.yml new file mode 100644 index 00000000..61d3ffe4 --- /dev/null +++ b/roles/x509/acmetool/cert/finalize/meta/main.yml @@ -0,0 +1,2 @@ +--- +allow_duplicates: true diff --git a/roles/x509/acmetool/cert/prepare/meta/main.yml b/roles/x509/acmetool/cert/prepare/meta/main.yml new file mode 100644 index 00000000..61d3ffe4 --- /dev/null +++ b/roles/x509/acmetool/cert/prepare/meta/main.yml @@ -0,0 +1,2 @@ +--- +allow_duplicates: true diff --git a/roles/x509/managed-ca/cert/finalize/meta/main.yml b/roles/x509/managed-ca/cert/finalize/meta/main.yml new file mode 100644 index 00000000..61d3ffe4 --- /dev/null +++ b/roles/x509/managed-ca/cert/finalize/meta/main.yml @@ -0,0 +1,2 @@ +--- +allow_duplicates: true diff --git a/roles/x509/managed-ca/cert/prepare/meta/main.yml b/roles/x509/managed-ca/cert/prepare/meta/main.yml new file mode 100644 index 00000000..61d3ffe4 --- /dev/null +++ b/roles/x509/managed-ca/cert/prepare/meta/main.yml @@ -0,0 +1,2 @@ +--- +allow_duplicates: true diff --git a/roles/x509/selfsigned/cert/finalize/meta/main.yml b/roles/x509/selfsigned/cert/finalize/meta/main.yml new file mode 100644 index 00000000..61d3ffe4 --- /dev/null +++ b/roles/x509/selfsigned/cert/finalize/meta/main.yml @@ -0,0 +1,2 @@ +--- +allow_duplicates: true diff --git a/roles/x509/selfsigned/cert/prepare/meta/main.yml b/roles/x509/selfsigned/cert/prepare/meta/main.yml new file mode 100644 index 00000000..61d3ffe4 --- /dev/null +++ b/roles/x509/selfsigned/cert/prepare/meta/main.yml @@ -0,0 +1,2 @@ +--- +allow_duplicates: true diff --git a/roles/x509/static-ca/cert/finalize/meta/main.yml b/roles/x509/static-ca/cert/finalize/meta/main.yml new file mode 100644 index 00000000..61d3ffe4 --- /dev/null +++ b/roles/x509/static-ca/cert/finalize/meta/main.yml @@ -0,0 +1,2 @@ +--- +allow_duplicates: true diff --git a/roles/x509/static-ca/cert/prepare/meta/main.yml b/roles/x509/static-ca/cert/prepare/meta/main.yml new file mode 100644 index 00000000..61d3ffe4 --- /dev/null +++ b/roles/x509/static-ca/cert/prepare/meta/main.yml @@ -0,0 +1,2 @@ +--- +allow_duplicates: true diff --git a/roles/x509/static/cert/finalize/meta/main.yml b/roles/x509/static/cert/finalize/meta/main.yml new file mode 100644 index 00000000..61d3ffe4 --- /dev/null +++ b/roles/x509/static/cert/finalize/meta/main.yml @@ -0,0 +1,2 @@ +--- +allow_duplicates: true diff --git a/roles/x509/static/cert/prepare/meta/main.yml b/roles/x509/static/cert/prepare/meta/main.yml new file mode 100644 index 00000000..61d3ffe4 --- /dev/null +++ b/roles/x509/static/cert/prepare/meta/main.yml @@ -0,0 +1,2 @@ +--- +allow_duplicates: true diff --git a/roles/x509/uacme/cert/finalize/meta/main.yml b/roles/x509/uacme/cert/finalize/meta/main.yml new file mode 100644 index 00000000..61d3ffe4 --- /dev/null +++ b/roles/x509/uacme/cert/finalize/meta/main.yml @@ -0,0 +1,2 @@ +--- +allow_duplicates: true diff --git a/roles/x509/uacme/cert/prepare/meta/main.yml b/roles/x509/uacme/cert/prepare/meta/main.yml new file mode 100644 index 00000000..61d3ffe4 --- /dev/null +++ b/roles/x509/uacme/cert/prepare/meta/main.yml @@ -0,0 +1,2 @@ +--- +allow_duplicates: true |