From 217364bf5c612ac0ee1818419e47d4631aa42cfe Mon Sep 17 00:00:00 2001
From: Christian Pointner <equinox@spreadspace.org>
Date: Sun, 15 Oct 2023 23:30:44 +0200
Subject: initial version for whawty-auth app (WIP)

---
 inventory/host_vars/ch-apps/whawty.yml | 34 ++++++++++++++++++++++++++++++++++
 1 file changed, 34 insertions(+)
 create mode 100644 inventory/host_vars/ch-apps/whawty.yml

(limited to 'inventory/host_vars/ch-apps/whawty.yml')

diff --git a/inventory/host_vars/ch-apps/whawty.yml b/inventory/host_vars/ch-apps/whawty.yml
new file mode 100644
index 00000000..fe6bcea0
--- /dev/null
+++ b/inventory/host_vars/ch-apps/whawty.yml
@@ -0,0 +1,34 @@
+---
+whawty_auth_instances:
+  test:
+    version: 0.2-rc8
+    port: 3080
+    store:
+      default: 1
+      params:
+      - id: 1
+        argon2id:
+          time: 1
+          memory: 65536
+          threads: 4
+          length: 32
+    hostnames:
+    - passwd.example.com
+    tls:
+      certificate_provider: selfsigned
+      cert:
+        organization_name: "chaos-at-home"
+        organizational_unit_name: "ansible"
+        key_usage:
+        - digitalSignature
+        - keyAgreement
+        key_usage_critical: yes
+        extended_key_usage:
+        - serverAuth
+        extended_key_usage_critical: yes
+        create_subject_key_identifier: yes
+        not_after: +52w
+        renew_margin: +42d
+    sync:
+      port: 3022
+      authorized_keys: "{{ users.equinox.ssh }}"
-- 
cgit v1.2.3