roll back to use ca chain file

128e7608 · Jupiter Hu · 27f10313 · 128e7608 · 128e7608 · 27f10313
Commit 128e7608 authored 9 years ago by Jupiter Hu
--- a/roles/ldapserver/tasks/main.yml
+++ b/roles/ldapserver/tasks/main.yml
@@ -61,10 +61,6 @@
  template: src=manager_ldif3.j2 dest=/tmp/manager3.ldif mode=600
  sudo: true

- name: make ca dir
-  file: path={{ ldapCAChainDest | dirname }} state=directory owner={{ ldapuser }} group={{ ldapgroup }}
-  sudo: true
-
 - name: make ldap certs dir
  file: path={{ ldapCertDest | dirname }} state=directory owner={{ ldapuser }} group={{ ldapgroup }}
  sudo: true
@@ -77,10 +73,11 @@
  copy: src="files/{{ ldapCert }}" dest="{{ ldapCertDest }}"
  sudo: true

- name: copy cacert
+- name: copy ca cert
  copy: src="files/{{ ldapCAChain }}" dest="{{ ldapCAChainDest }}"
  sudo: true

+
 - name: copy key
  copy: src="files/{{ ldapKey }}" dest="{{ ldapKeyDest }}" mode=600 owner={{ ldapuser }} group={{ ldapgroup }} 
  sudo: true

--- a/roles/ldapserver/vars/main.yml
+++ b/roles/ldapserver/vars/main.yml
 ---
-ldapCertDest: "{{ ldapDir }}/ssl/certs/hpcldap0.erc.monash.edu.au.cert.pem"
-ldapKeyDest: "{{ ldapDir }}/ssl/private/hpcldao0.erc.monash.edu.au.key.pem"
-ldapCAChainDest: "{{ ldapDir }}/ssl/certs/MeRC_HPC_CaChain.cert.pem"
+ldapCertDest: "{{ ldapDir }}/ssl/certs/ldapcert.pem"
+ldapKeyDest: "{{ ldapDir }}/ssl/private/ldapkey.pem"
+ldapCAChainDest: "{{ ldapDir }}/ssl/certs/cacert.pem
--- a/vars/main.yml
+++ b/vars/main.yml
---
-ldapKey: "hpcldap0.erc.monash.edu.au.key.pem"
-ldapCert: "hpcldap0.erc.monash.edu.au.cert.pem"
-ldapCAChain: "MeRC_HPC_CA_Chain.cert.pem"
-