From 33890cacb183b69bf0032fd3dbd41b9c20cab4b1 Mon Sep 17 00:00:00 2001
From: Christian Pointner <equinox@spreadspace.org>
Date: Tue, 12 Sep 2023 00:41:07 +0200
Subject: x509/certificates: generic config handling

---
 roles/x509/ownca/cert/prepare/defaults/main.yml | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'roles/x509/ownca/cert/prepare/defaults')

diff --git a/roles/x509/ownca/cert/prepare/defaults/main.yml b/roles/x509/ownca/cert/prepare/defaults/main.yml
index 4953db74..89dced63 100644
--- a/roles/x509/ownca/cert/prepare/defaults/main.yml
+++ b/roles/x509/ownca/cert/prepare/defaults/main.yml
@@ -4,6 +4,7 @@ ownca_cert_name: "{{ x509_certificate_name | default(ownca_cert_hostnames[0]) }}
 
 ownca_cert_base_dir: "/etc/ssl"
 
+ownca_cert_config: "{{ x509_certificate_config }}"
 # ownca_cert_config:
 #   path: "{{ ownca_cert_base_dir }}/{{ ownca_cert_name }}"
 #   mode: "0750"
@@ -28,6 +29,9 @@ ownca_cert_base_dir: "/etc/ssl"
 #     mode: "0644"
 #     owner: root
 #     group: www-data
+#     common_name: foo
+#     san_extra:
+#     - "IP:192.0.2.1"
 #     country_name: "AT"
 #     locality_name: "Graz"
 #     organization_name: "spreadspace"
-- 
cgit v1.2.3