1
0
forked from infra/ansible

acme-dnskey-generate: fix naming inconsistencies

This commit is contained in:
Markus 2019-02-13 15:40:12 +01:00
parent 275b9a6071
commit 766ece5b10
3 changed files with 5 additions and 5 deletions

View File

@ -1,5 +1,5 @@
---
dnskey_file: "/etc/nsupdate.key"
dnskey_algorithm: "hmac-sha512"
dnskey_server: "neon.binary-kitchen.net"
acme_dnskey_file: "/etc/acme/nsupdate.key"
acme_dnskey_algorithm: "hmac-sha512"
acme_dnskey_server: "neon.binary-kitchen.net"

View File

@ -28,7 +28,7 @@
- name: Get nsupdate.key again
shell: "pdnsutil list-tsig-keys | grep '^acme-{{ inventory_hostname }}. {{ acme_dnskey_algorithm }}'"
register: "pdns_key"
register: "pdns_nsupdate_key"
when: "pdns_genkey is defined"
changed_when: "False"
delegate_to: "{{ acme_dnskey_server }}"

View File

@ -1,4 +1,4 @@
key acme-{{ inventory_hostname }}. {
algorithm {{ acme_nsupdate_keyalgo }};
algorithm {{ acme_dnskey_algorithm }};
secret "{{ pdns_nsupdate_key.stdout.split(' ')[2] }}";
};