mirror of
https://git.lapiole.org/dani/ansible-roles.git
synced 2025-04-22 05:03:33 +02:00
25 lines
624 B
YAML
25 lines
624 B
YAML
---
|
|
|
|
- name: Generate self-signed certificate
|
|
import_tasks: ../includes/create_selfsigned_cert.yml
|
|
vars:
|
|
cert_path: "{{ vault_root_dir }}/tls/vault.crt"
|
|
cert_key_path: "{{ vault_root_dir }}/tls/vault.key"
|
|
cert_key_group: "{{ vault_user }}"
|
|
cert_key_mode: 640
|
|
tags: vault
|
|
|
|
- name: Deploy vault configuration
|
|
template:
|
|
src: vault.hcl.j2
|
|
dest: "{{ vault_root_dir }}/etc/vault.hcl"
|
|
owner: "{{ vault_user }}"
|
|
group: "{{ vault_user }}"
|
|
mode: 0400
|
|
notify: restart vault
|
|
tags: vault
|
|
|
|
- name: Setup logrotate
|
|
template: src=logrotate.conf.j2 dest=/etc/logrotate.d/vault
|
|
tags: vault
|