infra/ansible
4
5
Fork 5
Code Issues 6 Pull Requests 3 Activity

acme-dnskey-generate: fix naming inconsistencies

Browse Source
This commit is contained in:
Markus 2019-02-13 15:40:12 +01:00
parent 275b9a6071
commit 766ece5b10
3 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
roles/acme-dnskey-generate/defaults/main.yml
View File

@ -1,5 +1,5 @@
--- ---
dnskey_file: "/etc/nsupdate.key" acme_dnskey_file: "/etc/acme/nsupdate.key"
dnskey_algorithm: "hmac-sha512" acme_dnskey_algorithm: "hmac-sha512"
dnskey_server: "neon.binary-kitchen.net" acme_dnskey_server: "neon.binary-kitchen.net"

2
roles/acme-dnskey-generate/tasks/main.yml
View File

@ -28,7 +28,7 @@
- name: Get nsupdate.key again - name: Get nsupdate.key again
shell: "pdnsutil list-tsig-keys | grep '^acme-{{ inventory_hostname }}. {{ acme_dnskey_algorithm }}'" shell: "pdnsutil list-tsig-keys | grep '^acme-{{ inventory_hostname }}. {{ acme_dnskey_algorithm }}'"
register: "pdns_key" register: "pdns_nsupdate_key"
when: "pdns_genkey is defined" when: "pdns_genkey is defined"
changed_when: "False" changed_when: "False"
delegate_to: "{{ acme_dnskey_server }}" delegate_to: "{{ acme_dnskey_server }}"

2
roles/acme-dnskey-generate/templates/nsupdate.key.j2
View File

@ -1,4 +1,4 @@
key acme-{{ inventory_hostname }}. { key acme-{{ inventory_hostname }}. {
algorithm {{ acme_nsupdate_keyalgo }}; algorithm {{ acme_dnskey_algorithm }};
secret "{{ pdns_nsupdate_key.stdout.split(' ')[2] }}"; secret "{{ pdns_nsupdate_key.stdout.split(' ')[2] }}";
}; };